Release Notes Action Items for mcpg 0.3.12 → 0.3.23
This issue summarizes upstream release notes for the mcpg dependency between the previously pinned version (0.3.12) and the new pinned version (0.3.23), highlighting items that may need follow-up in ado-aw.
The companion version-bump PR is titled chore(deps): update MCPG_VERSION to 0.3.23.
Releases analyzed
Notable features for ado-aw to adopt
-
OTel span attributes aligned with gen_ai semantic conventions (v0.3.16): feat(tracing): align span attributes with gen_ai semantic conventions. MCPG now emits OTel spans that follow the OpenTelemetry gen_ai semconv. The ado-aw audit analyzer (src/audit/analyzers/otel.rs) may need to be updated to parse the new attribute names if it relies on specific MCPG span field names.
-
Per-session tool call limits in allow-only guard policies (v0.3.20): Enforce per-session tool call limits in allow-only guard policies. MCPG now enforces per-session limits when the guard policy is in allow-only mode. ado-aw generates MCPG guard policies from front-matter; consider whether to expose this as a configurable field (e.g., tools.call-limit:) so pipeline authors can cap tool call budgets.
-
Timeout fields added to embedded JSON schema (v0.3.23): fix(schema): add timeout fields to embedded JSON schema. The MCPG config schema now includes timeout fields. ado-aw should review whether any of these timeout config options are worth surfacing in the engine: or tools: front-matter sections.
Security fixes
- GHE Cloud data residency proxy routing fix (v0.3.23):
fix(proxy): route /api/graphql to correct upstream for GHE Cloud data residency. GraphQL requests were being routed to the wrong upstream for GHE Cloud data-residency tenants. ado-aw consumers on GHE Cloud benefit from this fix automatically after the version bump — no code changes required.
This issue was opened automatically by the dependency version updater workflow.
Generated by Dependency Version Updater · sonnet46 4.2M · ◷
Release Notes Action Items for
mcpg0.3.12→0.3.23This issue summarizes upstream release notes for the
mcpgdependency between the previously pinned version (0.3.12) and the new pinned version (0.3.23), highlighting items that may need follow-up in ado-aw.The companion version-bump PR is titled
chore(deps): update MCPG_VERSION to 0.3.23.Releases analyzed
Notable features for ado-aw to adopt
OTel span attributes aligned with gen_ai semantic conventions (v0.3.16):
feat(tracing): align span attributes with gen_ai semantic conventions. MCPG now emits OTel spans that follow the OpenTelemetry gen_ai semconv. The ado-aw audit analyzer (src/audit/analyzers/otel.rs) may need to be updated to parse the new attribute names if it relies on specific MCPG span field names.Per-session tool call limits in allow-only guard policies (v0.3.20):
Enforce per-session tool call limits in allow-only guard policies. MCPG now enforces per-session limits when the guard policy is in allow-only mode. ado-aw generates MCPG guard policies from front-matter; consider whether to expose this as a configurable field (e.g.,tools.call-limit:) so pipeline authors can cap tool call budgets.Timeout fields added to embedded JSON schema (v0.3.23):
fix(schema): add timeout fields to embedded JSON schema. The MCPG config schema now includes timeout fields. ado-aw should review whether any of these timeout config options are worth surfacing in theengine:ortools:front-matter sections.Security fixes
fix(proxy): route /api/graphql to correct upstream for GHE Cloud data residency. GraphQL requests were being routed to the wrong upstream for GHE Cloud data-residency tenants. ado-aw consumers on GHE Cloud benefit from this fix automatically after the version bump — no code changes required.This issue was opened automatically by the dependency version updater workflow.