Skip to content

@ai-sdk/react@4.0.0-canary.175

Pre-release
Pre-release

Choose a tag to compare

View all tags
@github-actions github-actions released this 12 Jun 15:36
· 41 commits to main since this release
@ai-sdk/react@4.0.0-canary.175
fb370a5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Patch Changes

  • 555c5de: fix(react): deny MCP App tool calls by default when allowedTools is omitted

    experimental_MCPAppRenderer's bridge only enforced the allowedTools allowlist when it was non-null, so omitting allowedTools skipped the check and forwarded every tools/call from the (untrusted) MCP App iframe to the host's callTool. A malicious or compromised MCP server could therefore invoke any tool the host wired up.

    Tool invocation from MCP App content is now deny-by-default: if allowedTools is not explicitly provided, all tools/call requests are rejected. To expose tools to an app, list them in handlers.allowedTools.

  • Updated dependencies [2a150f8]

  • Updated dependencies [b44b051]

  • Updated dependencies [aeda373]

  • Updated dependencies [25a64f8]

  • Updated dependencies [375fdd7]

  • Updated dependencies [f18b08f]

  • Updated dependencies [b4507d5]

    • @ai-sdk/mcp@2.0.0-canary.63
    • @ai-sdk/provider-utils@5.0.0-canary.48
    • ai@7.0.0-canary.172
Assets 2
Loading