seo-intel 1.5.52 → 1.5.53
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +5 -0
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,10 @@
|
|
|
1
1
|
# Changelog
|
|
2
2
|
|
|
3
|
+
## 1.5.53 (2026-07-01)
|
|
4
|
+
|
|
5
|
+
### Fixed: dependency security patches (hono, qs)
|
|
6
|
+
- Bumped transitive dependencies pulled in by the MCP SDK's optional HTTP transport (`hono` → 4.12.27, `qs` → 6.15.3), closing 10 published advisories (1 high, 9 moderate — CORS/cookie/auth-bypass issues in `hono`, a DoS in `qs.stringify`). seo-intel's MCP server only ever runs over stdio and never starts an HTTP listener, so none of these were actually reachable — this is a hygiene patch, not a fix for an exploited path. Lockfile-only change, no source edits.
|
|
7
|
+
|
|
3
8
|
## 1.5.52 (2026-07-01)
|
|
4
9
|
|
|
5
10
|
### New: per-project `sourcePath` — agent dispatch knows where the code lives
|