Skip to content

Bump mcp from 0.12.0 to 0.18.0#22

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/mcp-0.18.0
Closed

Bump mcp from 0.12.0 to 0.18.0#22
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/bundler/mcp-0.18.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 4, 2026

Copy link
Copy Markdown

Bumps mcp from 0.12.0 to 0.18.0.

Release notes

Sourced from mcp's releases.

v0.18.0

Added

  • Support server-to-client ping per MCP specification (#358)

Changed

  • Warn on implicit stdio initialization (#338)
  • Cache Tool::Schema validation to avoid re-validating identical schemas (#363)

Fixed

  • Fix case-sensitive Accept header comparison (#359)

v0.17.0

Added

  • Add OAuth 2.1 client support for MCP authorization flow (#353)

Fixed

  • Validate MCP-Protocol-Version header in StreamableHTTPTransport (#347)
  • Reject duplicate initialize requests (#350)
  • Reject non-Hash JSON-RPC bodies in StreamableHTTPTransport (#354)

v0.16.0

Added

  • Add opt-in tool output validation (#344)

Changed

  • Advertise JSON Schema 2020-12 dialect on emitted tool schemas (#342)

Fixed

  • Preserve client tool output schemas (#343)
  • Fix missing output_schema argument in define_tool API (#301)

v0.15.0

Added

  • Support notifications/cancelled per MCP specification (#332)
  • Add client-level connect for initialize handshake (#327)
  • Add client-level connect handshake to stdio transport (#336)

Changed

  • Return tool argument validation failures as tool execution errors (#333)

... (truncated)

Changelog

Sourced from mcp's changelog.

[0.18.0] - 2026-05-30

Added

  • Support server-to-client ping per MCP specification (#358)

Changed

  • Warn on implicit stdio initialization (#338)
  • Cache Tool::Schema validation to avoid re-validating identical schemas (#363)

Fixed

  • Fix case-sensitive Accept header comparison (#359)

[0.17.0] - 2026-05-19

Added

  • Add OAuth 2.1 client support for MCP authorization flow (#353)

Fixed

  • Validate MCP-Protocol-Version header in StreamableHTTPTransport (#347)
  • Reject duplicate initialize requests (#350)
  • Reject non-Hash JSON-RPC bodies in StreamableHTTPTransport (#354)

[0.16.0] - 2026-05-14

Added

  • Add opt-in tool output validation (#344)

Changed

  • Advertise JSON Schema 2020-12 dialect on emitted tool schemas (#342)

Fixed

  • Preserve client tool output schemas (#343)
  • Fix missing output_schema argument in define_tool API (#301)

[0.15.0] - 2026-05-05

Added

  • Support notifications/cancelled per MCP specification (#332)
  • Add client-level connect for initialize handshake (#327)
  • Add client-level connect handshake to stdio transport (#336)

... (truncated)

Commits
  • 3ff237a Merge pull request #367 from koic/release_0_18_0
  • 3988291 Release 0.18.0
  • f6e43d9 Merge pull request #363 from koic/cache-tool-schema-validation
  • 5c8b132 Cache Tool::Schema Validation to Avoid Re-validating Identical Schemas
  • fd2fd27 Merge pull request #338 from atesgoral/warn-stdio-implicit-connect
  • c4c1f2b Merge pull request #360 from yuki3738/fix_typo_for_client_method_references
  • a28a343 [Doc] Fix typos in MCP::Client method references
  • b6462fe feat: warn on implicit stdio initialization
  • dd7daca Merge pull request #359 from koic/case_insensitive_accept_header
  • 9b89620 Fix case-sensitive Accept header comparison
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump mcp from 0.12.0 to 0.18.0
812fa41 
Bumps [mcp](https://github.com/modelcontextprotocol/ruby-sdk) from 0.12.0 to 0.18.0.
- [Release notes](https://github.com/modelcontextprotocol/ruby-sdk/releases)
- [Changelog](https://github.com/modelcontextprotocol/ruby-sdk/blob/main/CHANGELOG.md)
- [Commits](modelcontextprotocol/ruby-sdk@v0.12.0...v0.18.0)

---
updated-dependencies:
- dependency-name: mcp
  dependency-version: 0.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code labels Jun 4, 2026
@dependabot dependabot Bot mentioned this pull request Jun 4, 2026
Closed
@dependabot @github

dependabot Bot commented on behalf of github Jun 17, 2026

Copy link
Copy Markdown
Author

Superseded by #25.

@dependabot dependabot Bot closed this Jun 17, 2026
@dependabot dependabot Bot deleted the dependabot/bundler/mcp-0.18.0 branch June 17, 2026 22:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file ruby Pull requests that update ruby code

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants