vector_mcp 0.3.4 → 0.5.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 96c22c8497dcfd618605017a41a11d747e596654d86e856551159303133e0ab9
-  data.tar.gz: 301099d4a3b6b21c28ad82adf95c77f3469a0c4ba40dbd63f9f4f1060391b37f
+  metadata.gz: 8125dfaaa8d0965448eac78401a013a1f5e41292f29141a72c44fca6dbb96cba
+  data.tar.gz: cef6523bbd0c43e969102f5776f6bcb5f2e6a9e10507b4faee1839258fe7f39f
 SHA512:
-  metadata.gz: 4d464e8ae1e4472eead1580582b2e39dcaadcc5da54087e3022386c05c2dafd0a45f80509a23653273d615a7f739e0cbd8de052acb6d816c1442819bb775b374
-  data.tar.gz: 26818191d6c915a31562356b3dec35ada9a1e0bd42f662d37e5884ce05ba139bd54f4fe768d6a2b5106de21e97da2b5a3c9970797eb05082256761e82f276238
+  metadata.gz: 6dafbddbeeb279f3232ad45c979b94b92266b1c05060f057dd747bc51ad6cc290da9c30886c9d72cee0445554445cf78e963efd354481974b7b875a5c98e0d21
+  data.tar.gz: 68003e44e084dc40cef4ae04add212901c65056d5432a18aad00550fc8055537812693b915b1f6b00c7e409178ea0801d54f3c9fc3a350c3cca5c65f9afcf700

data/CHANGELOG.md

@@ -1,3 +1,85 @@
+## [0.5.0] – 2026-04-22
+
+### Added
+
+* **Token-Based Field Anonymization**: Added a general-purpose anonymization pipeline that substitutes sensitive string fields with stable opaque tokens before tool results reach the LLM and restores them on inbound tool invocations.
+  - `VectorMCP::TokenStore` — thread-safe bidirectional value ↔ token store with idempotent tokenization.
+  - `VectorMCP::Util::TokenSweeper` — stateless recursive traversal utility for parsed JSON structures.
+  - `VectorMCP::Middleware::Anonymizer` — middleware wiring the store and sweeper with application-supplied field rules and optional atomic-key handling; registers via `anonymizer.install_on(server)`.
+
+* **OAuth 2.1 Resource Server mode (HTTP Stream transport)**: `enable_authentication!` now accepts a `resource_metadata_url:` option. When set, unauthenticated requests to `/mcp` return HTTP `401` with a `WWW-Authenticate: Bearer realm="mcp", resource_metadata="<url>"` header (RFC 9728), enabling MCP clients such as Claude Desktop to discover the authorization server and initiate OAuth 2.1 + PKCE flows. Opt-in: when `resource_metadata_url` is not set, the existing JSON-RPC `-32401` behavior is unchanged. See [docs/oauth_resource_server.md](docs/oauth_resource_server.md) and [docs/rails_oauth_integration.md](docs/rails_oauth_integration.md) for end-to-end guidance.
+
+### Changed
+
+* **Auth Result Value Object**: Replaced the internal authentication result hashes with a dedicated `AuthResult` value object for clearer, type-safe handoff between auth strategies and the security middleware.
+* **Consolidated Middleware Hook Types**: `HOOK_TYPES` and `HOOK_OPERATION_TYPES` are now derived from a single source of truth, eliminating drift between the two lists.
+* **Puma Thread Pool Tuning**: Standalone HTTP stream transport now configures the Puma thread pool explicitly for more predictable concurrency behavior.
+* **Event Store Offset Tracking**: Replaced the O(n) event store index rebuild with O(1) offset tracking, reducing overhead for sessions with long event histories.
+* **HTTP Stream Request Tracking**: Removed the redundant `@request_mutex` from HTTP stream request tracking and simplified the surrounding locking.
+* **Handlers::Core Cleanup**: Renamed misleading identifiers and removed dead legacy branches in `Handlers::Core`.
+* **General Complexity Reduction**: Reduced accidental complexity across six refactoring targets in the core request path.
+
+### Fixed
+
+* **TokenStore Read-After-Write Consistency**: Closed a read-after-write consistency hole in `TokenStore` so concurrent tokenization and resolution no longer race.
+
+## [0.4.0] – 2026-04-10
+
+### Added
+
+* **Declarative Tool DSL**: Added `VectorMCP::Tool` for class-based tool definitions.
+  - Define tools with `tool_name`, `description`, and `param`
+  - Register one or more tool classes with `server.register(MyTool, OtherTool)`
+  - Added `:date` and `:datetime` param types with automatic coercion to `Date` and `Time`
+
+* **Rack and Rails Integration**: Added first-class mounting support for Rack-based applications.
+  - `Server#rack_app` returns a Rack-compatible MCP endpoint without starting Puma
+  - Added `VectorMCP::Rails::Tool` for ActiveRecord-backed tools
+  - Added `docs/rails-setup-guide.md` with a full Rails integration guide
+
+* **Expanded Middleware Lifecycle Hooks**: Middleware can now observe and shape more of the request lifecycle.
+  - Added `before_auth`, `after_auth`, and `on_auth_error` hooks
+  - Added transport-level `before_request`, `after_response`, and `on_transport_error` hooks
+  - Middleware can now mutate params before handlers execute
+
+### Changed
+
+* **MCP Protocol Version**: VectorMCP now advertises MCP protocol `2025-11-25` by default.
+  - `MCP-Protocol-Version` headers for `2025-11-25`, `2025-03-26`, and `2024-11-05` are accepted for compatibility
+
+* **Streamable HTTP Compliance**: HttpStream was updated to align with the MCP 2025-11-25 transport requirements.
+  - POST bodies must contain a single JSON-RPC request, notification, or response
+  - POST `Accept` validation now enforces `application/json` plus `text/event-stream` when the header is present
+  - Notifications now return `202 Accepted`
+  - SSE streams now send priming events, retry hints, and comment-based heartbeats
+  - Event replay and outbound routing are now scoped to the originating stream
+
+* **Ruby Requirement**: Minimum supported Ruby version is now `3.2`.
+
+### Removed
+
+* **Stdio Transport**: Removed stdio transport support entirely.
+  - Deleted `lib/vector_mcp/transport/stdio.rb` and `lib/vector_mcp/transport/stdio_session_manager.rb`
+  - `Server#run` now defaults to `transport: :http_stream`
+
+* **Standalone SSE Transport**: Removed the legacy SSE transport implementation.
+  - Deleted `lib/vector_mcp/transport/sse.rb`, `lib/vector_mcp/transport/sse_session_manager.rb`, and `lib/vector_mcp/transport/sse/`
+  - HttpStream is now the only built-in transport
+
+* **Broadcast APIs**: Removed `broadcast_message` and `broadcast_notification` to comply with the no-broadcast delivery rules in the MCP streamable HTTP specification.
+
+### Security
+
+* **Safer Origin Defaults**: Default allowed origins are now restricted to localhost and loopback addresses.
+  - Explicit wildcard origin configuration still works, but now emits a security warning
+
+* **Stronger Path Validation**: `ImageUtil` now canonicalizes file paths and blocks traversal attempts even when no `base_directory` is provided.
+
+### Fixed
+
+* **Stream Routing and Replay**: Multiple active SSE streams in the same session now replay and deliver messages to the correct logical stream.
+* **Authorization Context Propagation**: Resolved security context is now stored on the session so middleware and handlers can inspect authenticated state consistently.
+
 ## [0.3.4] – 2026-03-17
 
 ### Added