agentic-community/mcp-gateway-registry v1.0.18

v1.0.18 - Auth0 Provider, ANS Trust Verification, Telemetry, and Federation Metadata

on GitHub

Auth0 Provider, ANS Trust Verification, Telemetry, and Federation Metadata

Upgrading from v1.0.17

This section covers everything you need to know to upgrade from v1.0.17 to v1.0.18.

Breaking Changes

There are no breaking changes in this release.

New Environment Variables

Upgrade Instructions

Docker Compose

cd mcp-gateway-registry
git pull origin main
git checkout v1.0.18

# Review new env vars in .env.example and update your .env if needed
# Then rebuild and restart:
./build_and_run.sh

Kubernetes / Helm (EKS)

cd mcp-gateway-registry
git pull origin main
git checkout v1.0.18

# Update values.yaml with Auth0/ANS/telemetry/registry card settings if needed
cd charts/mcp-gateway-registry-stack
helm upgrade mcp-gateway . -f your-values.yaml

Terraform / ECS

cd mcp-gateway-registry
git pull origin main
git checkout v1.0.18

# Update your .tfvars with any new variables
cd terraform/aws-ecs
terraform plan
terraform apply

DockerHub Images

Pre-built images are available:

docker pull mcpgateway/registry:v1.0.18
docker pull mcpgateway/auth-server:v1.0.18
docker pull mcpgateway/currenttime-server:v1.0.18
docker pull mcpgateway/realserverfaketools-server:v1.0.18
docker pull mcpgateway/fininfo-server:v1.0.18
docker pull mcpgateway/mcpgw-server:v1.0.18
docker pull mcpgateway/metrics-service:v1.0.18

Major Features

Auth0 Identity Provider Support

Full Auth0 integration as a fourth identity provider alongside Keycloak, Entra ID, and Okta. Includes OAuth2 login, M2M client credentials flow, group enrichment via custom claims, IAM management through Auth0 Management API, and Helm chart support.

PR #708

Agent Name Service (ANS) Integration

PKI-based trust verification for AI agents via GoDaddy ANS. Agents can link an ANS identity and receive a verified trust badge in the UI. Features include read-only "Bring Your Own ANS ID" model, background re-verification every 6 hours, circuit breaker resilience (5 failures, 1 hour cooldown), clickable badge with full certificate details, and Helm chart configuration.

PR #693

Server-Side Telemetry Collector

Anonymous usage telemetry infrastructure with opt-out support. Collects aggregate registry metrics (asset counts, feature usage) for project health insights. Includes configurable opt-in daily heartbeat, debug mode for payload inspection, and deployment-specific configuration for Kubernetes/ECS/Docker Compose.

PR #674

Token Refresher and A2A Tags

Automatic OAuth token refresh for MCP server connections, A2A agent tagging support, agent edit with skills management, and streamlined documentation structure.

PR #628

Discover Tab

New Discover tab in the frontend with expandable list rows, search functionality, and asset counts across servers, agents, and skills.

PR #745

UUID Fields and Federation Metadata

UUID identifiers and enhanced federation metadata for servers, agents, and skills. Enables cross-registry asset tracking and federation discovery with registry card configuration.

PR #676

What's New

Authentication and IAM

• Auth0 identity provider with OAuth2, M2M, and group enrichment (#708)
• Okta M2M sync dual-write to idp_m2m_clients for group enrichment parity with Auth0 (#759)
• Decouple is_admin from server wildcard access (#717)
• Add KEYCLOAK_EXTERNAL_URL to registry service (#681)

Agent Trust and Discovery

• ANS integration with trust badges, UI components, and infrastructure config (#693)
• Agent registration with Amazon Bedrock AgentCore security schemes and field pass-through (#728)
• Add supported_protocol field, update trust_level/visibility defaults (#737)
• Normalize visibility values across agents, servers, and skills (#740)

Telemetry and Observability

• Server-side telemetry collector infrastructure (#674)
• Telemetry end-to-end reliability and enhancements (#702)
• Fix telemetry registry_id being None on first startup (#714)
• Usage-report Claude Code skill for telemetry reporting (#715)
• Enhance usage-report skill with chart generation and styling (#727)
• Add telemetry analysis script to usage-report skill (#729)

Frontend Improvements

• Discover tab with expandable list rows, search, and counts (#745)
• Fix edit server blank page, add metadata to search and skill UI (#746)
• Tag filtering and searching support (#668)
• Fix tag filtering losing focus (#673)

Infrastructure and Deployment

• Packaging as a Python package (#669)
• Helm values support for registry card (#692)
• Make Nginx DNS resolver configurable via environment variable (#683)
• Restore SETUID/SETGID capabilities for MongoDB after cap_drop ALL (#688)
• MCP bug with CloudFront mode (#749)
• Format KMS key policy and add role pattern comments (#754)

Documentation

• FAQ section with Entra ID group visibility and API token guides (#756)
• Add QR code for repository (#757)
• ANS demo video link in design doc and README (#693)
• Update roadmap to April 2026 milestones (#741)

Bug Fixes

• Fix edit server blank page, add metadata to search and skill UI (#746)
• Preserve ans_metadata and other fields on agent edit (#752)
• MCP bug with CloudFront mode (#749)
• Normalize visibility values across agents, servers, and skills (#740)
• Agent registration with Amazon Bedrock AgentCore security schemes and field pass-through (#728)
• Decouple is_admin from server wildcard access (#717)
• Fix telemetry registry_id being None on first startup (#714)
• Intelligent tool finder top_n parameter ignored (#703)
• Telemetry end-to-end reliability and enhancements (#702)
• Resolve test regressions introduced in PR #676 (#690)
• Restore SETUID/SETGID capabilities for MongoDB after cap_drop ALL (#688)
• Pin litellm to 1.82.4 to avoid compromised 1.82.8 release (#687)
• Make Nginx DNS resolver configurable via environment variable (#683)
• Add KEYCLOAK_EXTERNAL_URL to registry service (#681)
• Fix tag filtering losing focus (#673)
• Okta M2M sync dual-write to idp_m2m_clients collection (#759)

Pull Requests Included

Security Dependency Updates

Contributors

Thank you to all contributors for this release:

• Amit Arora (@aarora79)
• Omri Shiv (@omrishiv)
• Prateek Sinha (@prateek-sinha-godaddy)
• Abhishek Singh (@singhabhishek4u)
• Gaurav Rele (@gauravrele87)
• Benjamin Hsu (@BenjaminHsu)
• Alejandro Nunez Cabello (@alnu79)

Support

• GitHub Issues
• GitHub Discussions
• Documentation

Full Changelog: v1.0.17...v1.0.18

What's Changed

• bump image tag by @omrishiv in #664
• support tag filtering and searching by @omrishiv in #668
• chore(deps): bump pyasn1 from 0.6.2 to 0.6.3 by @dependabot[bot] in #662
• chore(deps): bump pyasn1 from 0.6.2 to 0.6.3 in /agents/a2a by @dependabot[bot] in #661
• chore(deps): bump pyjwt from 2.10.1 to 2.12.0 in /agents/a2a by @dependabot[bot] in #652
• chore(deps): bump pillow from 11.3.0 to 12.1.1 by @dependabot[bot] in #649
• fix tag filtering losing focus by @omrishiv in #673
• chore(deps): bump flatted from 3.4.1 to 3.4.2 in /frontend by @dependabot[bot] in #672
• chore(deps): bump pyjwt from 2.11.0 to 2.12.0 in /servers/mcpgw by @dependabot[bot] in #671
• Add UUID fields and enhanced federation metadata for servers, agents, and skills by @aarora79 in #676
• chore(deps): bump fast-xml-parser and @aws-sdk/xml-builder in /cli by @dependabot[bot] in #680
• chore(deps): bump pyjwt from 2.10.1 to 2.12.0 by @dependabot[bot] in #679
• chore(deps): bump jsonpath from 1.2.1 to 1.3.0 in /frontend by @dependabot[bot] in #675
• Packaging as a python package by @bhsu22 in #669
• fix: Add KEYCLOAK_EXTERNAL_URL to registry service by @aarora79 in #681
• fix: make Nginx DNS resolver configurable via environment variable by @alejandronunezcabello in #683
• fix: pin litellm to 1.82.4 to avoid compromised 1.82.8 release by @aarora79 in #687
• fix: resolve test regressions introduced in PR #676 by @shekharprateek in #690
• update helm values to support registry card by @omrishiv in #692
• chore(deps): bump requests from 2.32.5 to 2.33.0 in /metrics-service by @dependabot[bot] in #698
• chore(deps): bump requests from 2.32.5 to 2.33.0 by @dependabot[bot] in #697
• chore(deps): bump requests from 2.32.5 to 2.33.0 in /agents/a2a by @dependabot[bot] in #696
• chore(deps): bump picomatch in /frontend by @dependabot[bot] in #694
• fix: restore SETUID/SETGID capabilities for MongoDB after cap_drop ALL by @shekharprateek in #688
• feat: ANS integration with UI fixes and infrastructure config by @aarora79 in #693
• feat: server-side telemetry collector infrastructure (issue #559) by @shekharprateek in #674
• fix: telemetry end-to-end reliability and enhancements by @aarora79 in #702
• fix: intelligent_tool_finder top_n parameter ignored (#682) by @abkrsinh in #703
• chore(deps): bump path-to-regexp from 0.1.12 to 0.1.13 in /frontend by @dependabot[bot] in #707
• chore(deps): bump langchain-core from 1.2.11 to 1.2.22 by @dependabot[bot] in #705
• chore(deps): bump brace-expansion from 1.1.12 to 1.1.13 in /frontend by @dependabot[bot] in #701
• chore(deps): bump cryptography from 46.0.5 to 46.0.6 in /servers/mcpgw by @dependabot[bot] in #706
• chore(deps): bump node-forge from 1.3.2 to 1.4.0 in /frontend by @dependabot[bot] in #700
• chore(deps): bump yaml in /frontend by @dependabot[bot] in #699
• Add Auth0 provider support to MCP Gateway Registry by @aarora79 in #708
• Fix telemetry registry_id being None on first startup by @aarora79 in #714
• chore(deps): bump pygments from 2.19.2 to 2.20.0 in /servers/currenttime by @dependabot[bot] in #712
• chore(deps): bump pygments from 2.19.2 to 2.20.0 in /metrics-service by @dependabot[bot] in #711
• chore(deps): bump pygments from 2.19.2 to 2.20.0 by @dependabot[bot] in #710
• Add usage-report Claude Code skill by @aarora79 in #715
• fix: decouple is_admin from server wildcard access by @aarora79 in #717
• chore(deps): bump pygments from 2.19.2 to 2.20.0 in /agents/a2a by @dependabot[bot] in #709
• feat: enhance usage-report skill with chart generation and styling by @aarora79 in #727
• fix: agent registration with Bedrock AgentCore security schemes and field pass-through by @aarora79 in #728
• feat: add telemetry analysis script to usage-report skill by @aarora79 in #729
• feat: token refresher, A2A tags, agent edit with skills, streamlined docs by @abkrsinh in #628
• chore(deps): bump aiohttp from 3.13.3 to 3.13.4 in /agents/a2a by @dependabot[bot] in #725
• chore(deps): bump aiohttp from 3.13.3 to 3.13.4 by @dependabot[bot] in #724
• chore(deps): bump fastmcp from 3.1.0 to 3.2.0 in /servers/currenttime by @dependabot[bot] in #721
• chore(deps): bump fastmcp from 3.1.0 to 3.2.0 in /servers/mcpgw by @dependabot[bot] in #720
• chore(deps): bump litellm from 1.82.4 to 1.83.0 by @dependabot[bot] in #730
• chore(deps): bump pygments from 2.19.2 to 2.20.0 in /servers/mcpgw by @dependabot[bot] in #733
• chore(deps): bump lodash from 4.17.23 to 4.18.1 in /frontend by @dependabot[bot] in #732
• feat: add supported_protocol field, update trust_level/visibility defaults by @aarora79 in #737
• fix: normalize visibility values across agents, servers, and skills by @aarora79 in #740
• chore: update roadmap to April 2026 milestones by @aarora79 in #741
• feat: Discover tab with expandable list rows, search, and counts by @aarora79 in #745
• Fix edit server blank page, add metadata to search and skill UI by @aarora79 in #746
• Fix: preserve ans_metadata and other fields on agent edit by @aarora79 in #752
• MCP bug with cloudfront mode by @gauravrele87 in #749
• fix: format KMS key policy and add role pattern comments by @aarora79 in #754
• docs: add FAQ section for common customer questions by @aarora79 in #756
• docs: add QR code image for repository by @aarora79 in #757
• fix: Okta M2M sync dual-write to idp_m2m_clients collection by @aarora79 in #759

New Contributors

• @bhsu22 made their first contribution in #669
• @alejandronunezcabello made their first contribution in #683

Full Changelog: v1.0.17...v1.0.18