docs(spec): amend Spec 049 — legalize server_quarantined status (six-value taxonomy)

[Dumbris]

Aligns Spec 049 with PR #778 (community contribution by @electrolobzik), which surfaces quarantined tools in retrieve_tools(include_disabled=true) as name-only locked entries and introduces a sixth disabled-tool status, server_quarantined.

Spec 049 FR-004 pinned the status taxonomy to exactly five values and its Assumptions stated all locked tools live in the search index. #778's behavior is correct — quarantined tools are deliberately excluded from the index (TPA defense) and surfaced via a dedicated discovery pass — but was undocumented. This amendment makes the spec consistent so #778 can land.

Changes

• FR-004: five → six values; server_quarantined documented as assigned by the quarantined-tool discovery pass (not the classifier), name-only, description/schema withheld; config-denied tools skipped; pending_approval reused for tool-level pending/changed on trusted servers.
• FR-003: name-only exception for quarantined entries.
• Assumptions: quarantine exception — excluded from the index, enumerated from authoritative quarantine state.
• Key Entities: five-value set → six.
• contracts/mcp-deltas.md: add server_quarantined to the status enum + example response + remediation.
• design doc §4.3 taxonomy: five → six.

Docs/spec only — no code change. Pairs with #778.

Related #778

[cloudflare-workers-and-pages]

Deploying mcpproxy-docs with    Cloudflare Pages

Latest commit:	de67b67
Status:	✅  Deploy successful!
Preview URL:	https://55038597.mcpproxy-docs.pages.dev
Branch Preview URL:	https://spec049-amend-on-main.mcpproxy-docs.pages.dev

View logs

[codecov-commenter]

⚠️ Please install the to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

[github-actions]

📦 Build Artifacts

Workflow Run: View Run
Branch: spec049-amend-on-main

Available Artifacts

• archive-darwin-amd64 (28 MB)
• archive-darwin-arm64 (25 MB)
• archive-linux-amd64 (16 MB)
• archive-linux-arm64 (14 MB)
• archive-windows-amd64 (28 MB)
• archive-windows-arm64 (25 MB)
• frontend-dist-pr (0 MB)
• installer-dmg-darwin-amd64 (21 MB)
• installer-dmg-darwin-arm64 (19 MB)

How to Download

Option 1: GitHub Web UI (easiest)

1. Go to the workflow run page linked above
2. Scroll to the bottom "Artifacts" section
3. Click on the artifact you want to download

Option 2: GitHub CLI

gh run download 28313018759 --repo smart-mcp-proxy/mcpproxy-go

Note: Artifacts expire in 14 days.

[mcpproxy-gatekeeper]

✅ Gatekeeper approval — Codex review verdict: ACCEPT.

This approval is posted automatically by the MCPProxy Gatekeeper App on behalf of the Codex reviewer (verdict of record lives in the Paperclip review thread). Author≠approver satisfied; QA + CI gates enforced separately.

Auto-approved per Model B (MCP-1249).