Skip to content

mcp-data-platform-v0.32.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 06 Mar 00:32
· 306 commits to main since this release
v0.32.0
ac43a42
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Highlights

v0.32.0 is a major feature release that adds a unified web portal with SSO login, an asset management system for AI-generated artifacts, and upstream tool consolidation that reduces the platform's tool count by 7.

Unified Portal with OIDC Browser Login (#179)

The two separate admin and portal SPAs have been merged into a single React application served at /portal/. Users can now sign in via SSO (OIDC Authorization Code Flow with PKCE) instead of manually pasting API keys.

  • Cookie-based sessions — HMAC-SHA256 signed JWT cookies (stateless, configurable TTL)
  • Dual-mode auth — SSO login (primary) with API key fallback for service accounts
  • Role-gated navigation — Everyone sees asset management; admins also see Dashboard, Tools, Audit, Knowledge, and Personas
  • id_token validation — iss, aud, and exp claims verified per OIDC Core §3.1.3.7
  • Secure logoutid_token_hint sent to the OIDC provider for proper single logout
  • Friendly error UX — OIDC callback errors redirect to the portal with human-readable messages instead of raw HTTP errors
  • Browser redirectAccept: text/html requests to / auto-redirect to /portal/
auth:
  oidc:
    enabled: true
    issuer: "https://auth.example.com/realms/platform"
    client_id: "mcp-data-platform"
    client_secret: "${OIDC_CLIENT_SECRET}"
    scopes: ["openid", "profile", "email"]
  browser_session:
    enabled: true
    signing_key: "${SESSION_SIGNING_KEY}"
    ttl: 8h
    secure: true

Asset Portal — Backend (#174) & Web Layer (#175)

A full artifact management system for AI-generated content (dashboards, reports, charts, code). Artifacts that previously vanished when conversations ended are now persisted with provenance tracking.

  • MCP toolssave_artifact and manage_artifact for AI agents to persist and manage content
  • Provenance tracking — Middleware records which tool calls produced each artifact, creating an audit trail
  • 10 REST endpoints — CRUD for assets and shares, owner enforcement, paginated listing
  • Public sharing — 256-bit random token URLs with configurable TTL, per-IP rate limiting, immediate revocation
  • Secure rendering — JSX/HTML in sandboxed iframes (no allow-same-origin), SVG sanitized via DOMPurify, Markdown via react-markdown
  • PostgreSQL + S3 storage — Metadata in PostgreSQL (with soft-delete), content in S3

Tool Consolidation (#177)

Upstream library upgrades reduce the platform's tool count by 7, simplifying the tool namespace for AI agents:

Before After
trino_list_catalogs, trino_list_schemas, trino_list_tables trino_browse
datahub_list_tags, datahub_list_domains, datahub_list_data_products datahub_browse
datahub_get_column_lineage Merged into datahub_get_lineage with level=column
  • mcp-trino v1.0.0 → v1.1.0
  • mcp-datahub v1.0.3 → v1.1.1

Note: Wildcard persona filters like trino_* still work, but *_list_* patterns will no longer match the new browse tools. Update persona configs accordingly.

Documentation & Branding (#176)

  • SVG logo banners (light/dark) matching sister projects
  • Ecosystem page describing the composable MCP server suite
  • All docs URLs migrated to mcp-data-platform.txn2.com
  • 7 missing DataHub write tools added to documentation
  • Stale tool names replaced across all doc files

Breaking Changes

  • Removed tools: trino_list_catalogs, trino_list_schemas, trino_list_tables, datahub_list_tags, datahub_list_domains, datahub_list_data_products, datahub_get_column_lineage — replaced by trino_browse, datahub_browse, and datahub_get_lineage level=column
  • Removed paths: /admin/ is no longer served. The unified portal is at /portal/
  • Persona configs: *_list_* filter patterns no longer match browse tools — update to explicit names or *_browse

CI Updates

  • anchore/sbom-action 0.22.2 → 0.23.0 (#166)
  • actions/upload-artifact 6.0.0 → 7.0.0 (#168)
  • actions/setup-go 6.2.0 → 6.3.0 (#167)

Installation

Homebrew (macOS)

brew install txn2/tap/mcp-data-platform

Claude Code CLI

claude mcp add mcp-data-platform -- mcp-data-platform

Docker

docker pull ghcr.io/txn2/mcp-data-platform:v0.32.0

Verification

All release artifacts are signed with Cosign. Verify with:

cosign verify-blob --bundle mcp-data-platform_0.32.0_linux_amd64.tar.gz.sigstore.json \
  mcp-data-platform_0.32.0_linux_amd64.tar.gz
Assets 25
Loading