-
Notifications
You must be signed in to change notification settings - Fork 630
Pull requests: IBM/mcp-context-forge
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
feat: API endpoint is served under the
/v1 prefix
#4403
opened Apr 22, 2026 by
Lang-Akshay
Collaborator
•
Draft
Align code default for LOG_LEVEL with docs
#4402
opened Apr 22, 2026 by
ccreighton-apptio
Loading…
4 tasks
fix(data-analysis): use SHA-256 for dataset content fingerprint
#4398
opened Apr 22, 2026 by
beejak
Loading…
fix(sso): Add support for Microsoft Entra ID email verification claims
api
REST API Related item
client-green
client-green
release-fix
Critical bugfix required for the release
security
Improves security
SHOULD
P2: Important but not vital; high-value items that are not crucial for the immediate release
feat: Add new login endpoints
#4387
opened Apr 22, 2026 by
gcgoncalves
Collaborator
Loading…
5 of 10 tasks
chore: update pyspelling to use uv tool run and add transitive dependency pins
#4386
opened Apr 22, 2026 by
jonpspri
Collaborator
Loading…
2 tasks
fix testing-up image local interpolation in echo
#4385
opened Apr 22, 2026 by
dima-zakharov
Collaborator
Loading…
2 of 10 tasks
security(mcp_runtime): backend URL validation for SSRF protection
ica
ICA related issues
release-fix
Critical bugfix required for the release
security
Improves security
#4383
opened Apr 22, 2026 by
MohanLaksh
Collaborator
Loading…
feat(runtime): add request body size limiting
ica
ICA related issues
release-fix
Critical bugfix required for the release
security
Improves security
#4382
opened Apr 22, 2026 by
MohanLaksh
Collaborator
Loading…
fix(logging): reinitialize logging after bootstrap_db to recover from…
#4379
opened Apr 21, 2026 by
madhu-mohan-jaishankar
Collaborator
Loading…
2 of 10 tasks
chore: remove duplicate retry_with_backoff tests moved to cpex-plugins
#4374
opened Apr 21, 2026 by
msureshkumar88
Collaborator
•
Draft
feat(security): implement JWT token security improvements
api
REST API Related item
enhancement
New feature or request
security
Improves security
SHOULD
P2: Important but not vital; high-value items that are not crucial for the immediate release
#4371
opened Apr 21, 2026 by
bogdanmariusc10
Collaborator
Loading…
6 of 10 tasks
feat: Add E2E test infrastructure for PII filter plugin
#4370
opened Apr 21, 2026 by
prakhar-singh1928
Collaborator
Loading…
3 of 10 tasks
fix(security): sanitize API validation error messages to prevent information disclosure
observability
Observability, logging, monitoring
security
Improves security
SHOULD
P2: Important but not vital; high-value items that are not crucial for the immediate release
#4368
opened Apr 21, 2026 by
bogdanmariusc10
Collaborator
Loading…
5 of 10 tasks
chore: update CI uv action and linted YAML
#4364
opened Apr 21, 2026 by
lucarlig
Collaborator
Loading…
2 of 10 tasks
fix(logging): respect LOG_LEVEL environment variable in plugin logging configuration
observability
Observability, logging, monitoring
plugins
SHOULD
P2: Important but not vital; high-value items that are not crucial for the immediate release
feat(runtime): enhance request validation and size limiting
ica
ICA related issues
MUST
P1: Non-negotiable, critical requirements without which the product is non-functional or unsafe
ready
Validated, ready-to-work-on items
release-fix
Critical bugfix required for the release
#4362
opened Apr 21, 2026 by
MohanLaksh
Collaborator
•
Draft
fix(rpc): return -32601 for unknown JSON-RPC methods instead of -32000
bug
Something isn't working
mcp-protocol
Alignment with MCP protocol or specification
#4356
opened Apr 21, 2026 by
shoummu1
Collaborator
Loading…
4 tasks done
[Security][ICACF-16] Strengthen account lockout to prevent brute-force attacks
pentesting
release-fix
Critical bugfix required for the release
security
Improves security
#4348
opened Apr 20, 2026 by
MohanLaksh
Collaborator
Loading…
8 tasks done
feat: implement dark/light mode theme toggle
#4347
opened Apr 20, 2026 by
vishu-bh
Collaborator
Loading…
feat(security): implement UAID cross-gateway auth forwarding and fail-closed allowlist (closes #4236)
a2a
Support for A2A protocol
security
Improves security
#4342
opened Apr 20, 2026 by
rakdutta
Collaborator
Loading…
fix(security): prevent admin bypass from accessing private resources
api
REST API Related item
MUST
P1: Non-negotiable, critical requirements without which the product is non-functional or unsafe
rbac
Role-based Access Control
release-fix
Critical bugfix required for the release
security
Improves security
#4341
opened Apr 20, 2026 by
bogdanmariusc10
Collaborator
Loading…
5 of 10 tasks
fix(security): add comprehensive input validation to all router query parameters
api
REST API Related item
MUST
P1: Non-negotiable, critical requirements without which the product is non-functional or unsafe
release-fix
Critical bugfix required for the release
security
Improves security
#4337
opened Apr 20, 2026 by
bogdanmariusc10
Collaborator
Loading…
3 of 10 tasks
fix(security): block URL-encoded injection patterns in SecurityValidator.validate_url()
api
REST API Related item
MUST
P1: Non-negotiable, critical requirements without which the product is non-functional or unsafe
release-fix
Critical bugfix required for the release
security
Improves security
#4335
opened Apr 20, 2026 by
bogdanmariusc10
Collaborator
Loading…
5 of 10 tasks
[ICACF-15] Restrict gateway test endpoint to approved hosts - SSRF protection
bug
Something isn't working
enhancement
New feature or request
security
Improves security
#4329
opened Apr 20, 2026 by
MohanLaksh
Collaborator
Loading…
9 tasks done
Previous Next
ProTip!
Exclude everything labeled
bug with -label:bug.