Skip to content

v0.8.1

Choose a tag to compare

View all tags
@jerm-dro jerm-dro released this 27 Jan 15:52
· 1232 commits to main since this release
v0.8.1
aa9df8c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

What's Changed

  • Skip token injection when token exchange active by @jhrozek in #3385
  • Make private IP error message context-agnostic by @yrobla in #3403
  • Map thvCABundle to OIDCConfig.CACertPath by @jhrozek in #3391
  • Add authorization and callback handlers for authserver by @jhrozek in #3370
  • Return 404 for not-found errors in workload API endpoints by @dmjb in #3409
  • feat(auth): persist OAuth tokens across workload restarts by @flfeurmou-indeed in #3382
  • add bearerToken type to MCPExternalAuthConfig CRD by @amirejaz in #3224
  • Update registry from toolhive-registry release v2026.01.23 by @github-actions[bot] in #3416
  • Add StatusReporter abstraction for vMCP runtime by @4t8dd in #3159
  • bump version of yardstick to 1.1.1 by @yrobla in #3420
  • Bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 by @dependabot[bot] in #3412
  • Bump github.com/sigstore/sigstore from 1.10.0 to 1.10.4 by @dependabot[bot] in #3414
  • Update toolhive images to v0.8.0 by @renovate[bot] in #3404
  • Fix authorization bypass for unknown MCP methods by @yrobla in #3406
  • Update anthropics/claude-code-action digest to 8341a56 by @renovate[bot] in #3415
  • Bump github.com/theupdateframework/go-tuf/v2 from 2.3.0 to 2.3.1 by @dependabot[bot] in #3379
  • Fix race condition when deleting workload just after creation by @dmjb in #3422
  • Add bug-triage Claude agent for issue management by @JAORMX in #3405
  • fix(#3411) - waitForStatefulSet waits for the latest generation by @jerm-dro in #3413
  • Add header forward middleware for remote MCP servers by @jhrozek in #3423
  • Add E2E tests for group endpoints by @dmjb in #3402
  • authserver DCR hardening: Add grant_types and response_types allowlis… by @jhrozek in #3425
  • Refactor RBAC management to eliminate code duplication by @yrobla in #3368
  • Add token endpoint handler by @jhrozek in #3408
  • Add KeyManager for signing key lifecycle to authserver by @jhrozek in #3407
  • Add EmbeddingServer CRD for deploying HuggingFace embedding models by @ptelang in #3323
  • Update the registry format converters to support a few missing properties by @rdimitrov in #3426
  • Update registry from toolhive-registry release v2026.01.24 by @github-actions[bot] in #3432
  • Update registry from toolhive-registry release v2026.01.24 by @github-actions[bot] in #3434
  • Update registry from toolhive-registry release v2026.01.26 by @github-actions[bot] in #3435
  • Update anthropics/claude-code-action digest to f642197 by @renovate[bot] in #3431
  • Preserve _meta fields in vMCP backend responses by @yrobla in #3354
  • Use very high port numbers in unit tests by @dmjb in #3441
  • Return 400 for bad clients instead of 500s by @dmjb in #3438
  • E2E tests for client API endpoints by @dmjb in #3442
  • Add header forward configuration and wire middleware in runner by @jhrozek in #3427
  • Add E2E scenarios for registry tests by @dmjb in #3444
  • Add writeup on CLI implementation best practices by @dmjb in #3445
  • fix(#3448) - vMCP operator deterministically orders servers by @jerm-dro in #3450
  • Update registry from toolhive-registry release v2026.01.27 by @github-actions[bot] in #3454
  • Update workload commands to comply with logging guidelines by @eleftherias in #3443
  • Update anthropics/claude-code-action digest to 231bd75 by @renovate[bot] in #3455
  • Fix concurrency bug with groups by @dmjb in #3447
  • Add e2e test for version endpoint by @dmjb in #3446
  • Bump github.com/theupdateframework/go-tuf/v2 from 2.3.1 to 2.4.1 by @dependabot[bot] in #3453
  • Implement tests for missing workload API endpoints by @dmjb in #3449
  • Update helm/kind-action digest to ef37e7f by @renovate[bot] in #3437
  • Add K8sReporter implementation and status reporting documentation by @yrobla in #3456
  • Dedupe redirect URL validation for authserver + allow app-specific redirect URLs by @jhrozek in #3451
  • Add CLI flags for header forward configuration by @jhrozek in #3452
  • fix: improve stability of remote MCP server connections by @flfeurmou-indeed in #3417
  • Add POST /oauth/register handler for dynamic client registration by @jhrozek in #3428

New Contributors

Full Changelog: v0.8.0...v0.8.1

Contributors

JAORMX, jhrozek, and 11 other contributors
Assets 22
Loading