You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+4Lines changed: 4 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -145,6 +145,10 @@ See [ADDITIONAL.md](ADDITIONAL.md) for a curated list of frameworks and resource
145
145
146
146
See [CONTRIBUTING.md](CONTRIBUTING.md) for information about contributing to this repository.
147
147
148
+
## 📦 Releasing
149
+
150
+
See [RELEASING.md](RELEASING.md) for how packages are published (OIDC trusted publishing from CI — no registry tokens) and how to retry a failed publish.
151
+
148
152
## 🔒 Security
149
153
150
154
See [SECURITY.md](SECURITY.md) for reporting security vulnerabilities.
How the packages in this repository are published, and what to do when a publish fails.
4
+
5
+
## How publishing works
6
+
7
+
All packages publish exclusively from the [`release.yml`](.github/workflows/release.yml) GitHub Actions workflow, gated by the `release` environment (a required reviewer must approve each deployment). Releases are triggered deliberately by a maintainer via **workflow_dispatch** (Actions → Release → Run workflow, or `gh workflow run release.yml`) — there is no scheduled/automatic release.
8
+
9
+
**Authentication is OIDC trusted publishing on both registries — there are no registry tokens.**
10
+
11
+
-**npm** (TypeScript servers): each `@modelcontextprotocol/*` package is registered on npmjs.com with a [trusted publisher](https://docs.npmjs.com/trusted-publishers) bound to this repository, workflow filename `release.yml`, and environment `release` (the binding is case-sensitive). Packages publish with [provenance attestations](https://docs.npmjs.com/generating-provenance-statements).
12
+
-**PyPI** (Python servers): published via [PyPI trusted publishing](https://docs.pypi.org/trusted-publishers/) using `pypa/gh-action-pypi-publish`.
13
+
14
+
A release run:
15
+
16
+
1.**Detects changed packages** since the last release tag — a package counts as changed if any `.py`, `.ts`, or `.md` file in its directory changed (READMEs ship inside the published artifacts).
17
+
2.**Stamps versions and pushes the release tag** — versions are date-based (CalVer, e.g. `2026.7.4`).
18
+
3.**Publishes each changed package as an independent matrix job** (`fail-fast: false` — one package's failure never blocks another). Each job: checkout at the release tag → install → double-publish guard → **run the package's tests** (plus `pyright` for Python) → build → publish. The guard differs by registry: the npm job aborts before tests if the version already exists; for PyPI the skip happens at the publish step itself (`skip-existing` on the upload action).
19
+
4.**Creates the GitHub release** with generated notes.
20
+
21
+
## When a publish fails
22
+
23
+
A failed matrix leg means that one package didn't publish; everything that succeeded stays published.
24
+
25
+
**Preferred: re-run the failed jobs on the same run.**
26
+
27
+
```bash
28
+
gh run rerun <run-id> --failed --repo modelcontextprotocol/servers
29
+
```
30
+
31
+
- A re-run is still a `release.yml` run in the `release` environment, so it satisfies the trusted-publisher binding.
32
+
- It re-runs only the failed legs, checked out at the original release tag — it publishes exactly the tagged code, and the double-publish guard keeps already-published packages safe.
33
+
- It needs a fresh `release` environment approval, and the run must be complete first (approve or reject any pending deployments).
34
+
- GitHub's re-run window is ~30 days from the original run, and re-runs execute the *original* workflow snapshot — workflow fixes on `main` don't apply to a re-run.
35
+
36
+
**Otherwise: let the next release pick it up.** If the re-run window has closed (or the fix required a workflow change), the failed version simply never exists on that registry — that's benign; npm and PyPI version histories don't need to match. The package publishes at the next version, provided it has a qualifying change (`.py`, `.ts`, or `.md`) since the last release tag.
37
+
38
+
**Never:**
39
+
40
+
- Publish manually with an npm token or from a laptop — there are no registry tokens, and manual publishes would break the provenance/trust chain.
41
+
- Dispatch a fresh `release.yml` run expecting it to retry a failed version — versions are date-granular, so a same-day dispatch collides with the existing tag, and a later dispatch mints a *new* version. Neither retries the failed one.
42
+
43
+
## Environment approvals
44
+
45
+
The `release` environment's required-reviewer list is configured in the repository settings (Settings → Environments → `release`). Reviewer rights come only from that list — repository admin does not confer deployment approval.
46
+
47
+
---
48
+
49
+
Planned changes to this process — semver via changesets for the TypeScript packages, publishing triggered by manually-created GitHub Releases — are tracked in [#4463](https://github.com/modelcontextprotocol/servers/issues/4463). This document will be updated when that work merges.
This MCP server is licensed under the MIT License. This means you are free to use, modify, and distribute the software, subject to the terms and conditions of the MIT License. For more details, please see the LICENSE file in the project repository.
Copy file name to clipboardExpand all lines: src/sequentialthinking/README.md
+2Lines changed: 2 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -2,6 +2,8 @@
2
2
3
3
An MCP server implementation that provides a tool for dynamic and reflective problem-solving through a structured thinking process.
4
4
5
+
Published on npm as [`@modelcontextprotocol/server-sequential-thinking`](https://www.npmjs.com/package/@modelcontextprotocol/server-sequential-thinking).
6
+
5
7
## Features
6
8
7
9
- Break down complex problems into manageable steps
0 commit comments