Security fix: redact credentials in MCP replacement output (PR #43 by @danikdanik)
- MCP tool responses containing API keys, tokens, or credentials were redacted on disk but leaked into the live model context via
updatedMCPToolOutput. Now both paths use the redacted version. - Fixed pre-existing test date-rot bug in
test_cache_ttl_mix
Thanks @danikdanik for the sharp catch!