chore(deps): Bump @modelcontextprotocol/sdk from 1.22.0 to 1.24.3#69
chore(deps): Bump @modelcontextprotocol/sdk from 1.22.0 to 1.24.3#69dependabot[bot] wants to merge 1 commit intomasterfrom
Conversation
Bumps [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) from 1.22.0 to 1.24.3. - [Release notes](https://github.com/modelcontextprotocol/typescript-sdk/releases) - [Commits](modelcontextprotocol/typescript-sdk@1.22.0...1.24.3) --- updated-dependencies: - dependency-name: "@modelcontextprotocol/sdk" dependency-version: 1.24.3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Manually applies 6 safe Dependabot PRs (#64, #69, #73, #74, #75, #76) as a single consolidated update to avoid package-lock.json conflict hell. - @biomejs/biome 2.3.7 → 2.3.8 (patch) - wrangler 4.50.0 → 4.54.0 (minor) - @cloudflare/vitest-pool-workers 0.10.10 → 0.10.15 (minor) - @types/node 24.10.1 → 25.0.2 (major — dev types only, safe) - @modelcontextprotocol/sdk 1.22.0 → 1.24.3 (minor) - agents 0.2.23 → 0.2.32 (minor) Deferred: vitest 3→4 family (#67/#70/#72) and zod 3→4 (#62) — both need dedicated migration testing. All 163 tests pass, tsc clean. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
|
Addressed in consolidated dep update commit |
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
Bot
deleted the
dependabot/npm_and_yarn/modelcontextprotocol/sdk-1.24.3
branch
1 participant
Bumps @modelcontextprotocol/sdk from 1.22.0 to 1.24.3.
Release notes
Sourced from
@modelcontextprotocol/sdk's releases.... (truncated)
Commits
724fe6echore: bump version for patch release (#1235)2f76ac8fix: skip priming events and closeSSEStream for old protocol versions (#1233)0a374fcfix: release HTTP connections after POST responses (#1214)2d2c8ffchore(deps): bump express from 5.0.1 to 5.2.1 in the npm_and_yarn group acros...545dbe1chore: fix dev dependency security vulnerabilities (#1227)d23674dchore: bump version to 1.24.2 (#1224)7c9257crefactor: make Server class framework-agnostic by moving express to separate ...401a189chore: refresh CLAUDE.md (#1217)4b5c25dfeat: add optional resource annotations (#954)6dd7cd4chore: bump version for release (#1219)You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)