Skip to content

Commit b53dce1

Browse files
JAORMXrenovate[bot]claude
authored
fix(mcp): update pagerduty-mcp to v1.0.0, add mock_env for scan (#735)
* chore(deps): update dependency pagerduty-mcp to v1 * fix(mcp): add mock_env for pagerduty-mcp security scan pagerduty-mcp v1 creates the PagerDuty client eagerly at startup (ApplicationContextStrategy.__init__ -> create_pd_client()), raising RuntimeError without PAGERDUTY_USER_API_KEY set. This prevented mcp-security-scan from connecting to the server at all. Add a mock credential so the scanner can launch and enumerate tools, matching the existing pattern used by pinecone-mcp/launchdarkly-mcp-server/etc. Co-Authored-By: Claude Sonnet 5 <noreply@anthropic.com> --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Claude Sonnet 5 <noreply@anthropic.com>
1 parent 89a27f3 commit b53dce1

1 file changed

Lines changed: 9 additions & 1 deletion

File tree

uvx/pagerduty-mcp/spec.yaml

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -11,13 +11,21 @@ metadata:
1111

1212
spec:
1313
package: "pagerduty-mcp"
14-
version: "0.17.0"
14+
version: "1.0.0"
1515

1616
provenance:
1717
repository_uri: "https://github.com/PagerDuty/pagerduty-mcp-server"
1818
repository_ref: "refs/heads/main" # Using main branch as the primary development branch
1919

2020
security:
21+
# Mock env vars allow security scanning without real credentials. pagerduty-mcp
22+
# v1 creates the PagerDuty client eagerly at startup and raises RuntimeError
23+
# without an API key, which previously prevented the scanner from connecting
24+
# to the server at all.
25+
mock_env:
26+
- name: PAGERDUTY_USER_API_KEY
27+
value: "mock-pagerduty-api-key-for-scanning"
28+
description: "PagerDuty API key — mock value for security scanning"
2129
allowed_issues:
2230
- code: "AITech-8.2"
2331
reason: "Data leak risk acceptable - incident management requires sharing operational data with responders and creating public status updates. Write operations are disabled by default, requiring explicit opt-in with --enable-write-tools flag."

0 commit comments

Comments
 (0)