goern/forgejo-mcp v2.23.0

on Codeberg

Changelog

• 7efed5537571f37f685120120435659d5b0c0cf6 chore(release): 2.23.0
• bbbf84ec266538b91b8e2bd375aa8ec5d36b99f9 chore: update beads jsonl
• 92864bd2dca78acd088c3613e5d0c7e54a7cb789 Merge pull request 'docs: add NixOS installation instructions' (#146) from byteflavour/forgejo-mcp:docs-nix-install into main
• 6e21d26698aafbb671d4c029c21773a3febac85d Merge pull request 'docs: 📝 retrofit openspec for stateless-http-auth (#137)' (#139) from openspec/stateless-http-auth into main
• 984e56d018e0762ea2559a9fe999d0db365f08f0 Merge pull request 'feat: support stateless per-request authentication for HTTP and SSE transports' (#138) from byteflavour/forgejo-mcp:stateless-token into main
• 51c996ad7803d0af1060936dc3b8a717599e6337 Merge branch 'main' into docs-nix-install
• 3170b1d7698159b3194b7989da4508df5c3cead3 Merge branch 'main' into stateless-token
• ebb70b3dbc1c14414856238cad7c0a46fc3e0122 chore: 🔧 bd: close dhd (PR #147 merged), claim 1l5 RFC
• ebd76e90af4a645a42a2eb5869204ac089a6021d Merge pull request 'ci: gitleaks allowlist for placeholder tokens in demo docs' (#147) from ci/gitleaks-allowlist-demos into main
• fa2c5fc79eafc3482f770a01835d9da3017a9407 chore: 🔧 bd: file dhd (gitleaks placeholder allowlist), claim, link PR #147
• ed5f4191954d3945d31d7d11850f0ed9c0974730 ci: 🔧 gitleaks: allow placeholder tokens in demo docs
• 612da9f9b7732a05bc6a73308af96f3ddbb9c42d Merge pull request 'fix: bump x/net + jsonparser to clear govulncheck advisories' (#145) from ci/fix-govulncheck-151 into main
• 45bdadc2e0645b92ad350bc2209cfd7d9958a310 chore: 🔧 bd: claim+close 02o (PR #145 labeled Kind/Security)
• 9e29a130369f24b9f715857fb073e15f711f8dd5 docs: improve NixOS installation instructions
• bd08d6147dd23e25215ba832728e008e32ba04fd merge: resolve conflicts with upstream/main
• 4969ee588180ea5bbce501ea2262b0573e6f12f8 feat: robust stateless auth with security fixes and improved tests
• d3fcc3d2eb45d4e119e82e51ffba37d724888556 ci: 🔒️ provision cosign signing material for release pipeline
• e084bf70f7c1386c1b35ad933f5e1d2a698ee366 fix: 🔒️ bump x/net to v0.55.0 + jsonparser to v1.1.2 (govulncheck)
• b53143f18c45c547b2080f90ce5a2d51513753f8 docs: 📝 add multi-tenant HTTP mode documentation and demo
• 7063249513ad3cf75fe7b15cee436f3aef47046e chore: 🔧 reconcile .gitignore
• c0416e376d6655e61b08dab869a976a0a922adca chore: 🔧 bd: close 51l (PR #144 merged)
• b2c67f87098f9bdf030ef986d7d3da68dc59a0a6 Merge pull request 'ci: harden release pipeline (SBOM, smoke-test, conditional cosign signing)' (#144) from ci/step3-release-hardening into main
• 23be9fdaa5e708133705ae07989cb27f3acfc2ab chore: 🔧 bd: claim 51l, link PR #144
• 42614b036b9cb7eaf58ca97f2f5e8b55bfdd14ab ci: 🔒️ add cosign-keygen.sh producing SOPS-encrypted k8s Secret
• c82fbeef424f0a4ae11eddff56344e0758e76991 ci: 🚀 release.yml: syft + cosign install, smoke-test, conditional sign
• 74f601a4eb90e191c51c36c66117ecf00bd87cbb ci: 🚀 enable checksums and per-archive CycloneDX SBOMs in goreleaser
• 2ff1ddd2de645cc414d85e5f861a942f55271f5a chore: 🔧 bd: close 9n2, file e9i (ci.yml run #147 failure)
• 815a2d042674a47847645e19ae8a604150ede8f3 ci: 🚀 add Forgejo Actions CI workflow with Go cache
• eed502bab4d0d76a53b28c5654860af3ecf0a420 chore: 🔧 bd: claim forgejo-mcp-9n2, link PR #143
• 738d9795533c29c2da0814c5e5ad5c3d07269bff ci: 🚀 add vet, gofmt-check, mod-tidy, lint, race, govulncheck to go-ci
• 98b3cd572aafd3cc940f72b56b2bc2baa7206064 fix: 🔒️ bump golang.org/x/crypto to v0.52.0 (GO-2026-5018)
• 34effc817fb5f85bb0bbafd6919f1b5511ba625a style: 🎨 apply gofmt -w to operation/* and pkg/*
• f305e33fc295f034c502da14f67f3b82d03e6671 chore: 🔧 bd: file + close forgejo-mcp-5x8 (PaC webhook fix)
• 1e03bb342a13254bccec42f35d1527b904fd69fc Merge pull request 'chore(deps): update registry.access.redhat.com/hi/go docker tag to v1.26.3' (#141) from renovate/registry.access.redhat.com-hi-go-1.x into main
• f4cacf1bd19ca15235bd1ae55f104b54d2e6b8f3 chore: 🔧 bd: file CI hardening epic (Steps 1–3 + follow-ups)
• a623431f3cd29e9da12d4a482b4e5d5026bf4d24 chore(deps): update registry.access.redhat.com/hi/go docker tag to v1.26.3
• 4f57c57fbe388ea07b008502a651fdacd06af6b9 Merge pull request 'chore: 🔧 switch Containerfile to Project Hummingbird base images' (#140) from worktree-containerfile-hummingbird into main
• 3d8ade1dd68626c7f99aebbec1307aace950d9fe chore: 🔧 switch Containerfile to Project Hummingbird base images
• df15877777b177d9d237af26fab3c4a829ba61de docs: 📝 retrofit openspec for stateless-http-auth (#137, PR #138)
• 3a73026b164e83aa0438edb54c85962348d9ea44 chore: 🔧 add Claude Code agent team infrastructure for multi-agent workflows
• 684844cbe6839ea68dc1f474bee185bc68682537 feat: stateless per-request token handling for HTTP/SSE transports
• b6eb0a99777afd3e59bd9a08f98db23dff539133 chore: 🔧 bd: file C5 spike + C4 cleanup issues, link to forgejo-mcp-673
• 48809bd3a5cdf3880f30f01955c6cc7c4362a41d docs: 📝 battle-test forgejo-action-code-review, resolve C4 spike
• 1dc7a17fb28b7c5dc47280abdcf609e7e8854328 docs: 📝 archive add-releases-support, sync release-management spec
• 4554d59286a7c554fd079bc2489ba4e98b04c7b4 Merge pull request 'feat: ✨ add 14 MCP tools for Forgejo releases and release attachments' (#134) from feat/releases-support into main
• a41115b9bbe442b036d84053c68349abb6fc9fb0 feat: ✨ add 14 MCP tools for Forgejo releases and release attachments
• 7eb8a342346c40f95a9ebd8551e0f52e39469561 docs: 📝 archive 5 delivered openspec changes, track 2 unimplemented
• 097516ade85c3b04c388efcce8708d7be5523261 docs: 📝 add Radicle mirror clone instructions to README
• 2b5721aaa114d2954121f737e1684ab8001d1504 ci: 🚀 drop redundant PaC annotations on openspec-validate
• b936f8ab207ef1a56129ba45ff6890caf4ba0676 ci: 🚀 add gitleaks scanning (Tekton + pre-commit)
• e55c259ae5612adc83cad4ee68b1563430c2d2af docs: 📝 link demos/ index from top-level README
• 621e6648d02b67d22801b9973507b41e8dec4e2d docs: 📝 add demos/README.md index grouping demos by topic cluster
• 4baeb3030eebf85cf2beaada37c2ba19432689fe docs: 📝 add showboat demos for v2.22.0 (org labels, bounded responses)