github vercel/ai @ai-sdk/react@4.0.0-canary.175
on GitHub

latest releases: @ai-sdk/xai@3.0.96, @ai-sdk/vue@3.0.207, @ai-sdk/voyage@1.0.7...
pre-release4 days ago

Patch Changes

  • 555c5de: fix(react): deny MCP App tool calls by default when allowedTools is omitted

    experimental_MCPAppRenderer's bridge only enforced the allowedTools allowlist when it was non-null, so omitting allowedTools skipped the check and forwarded every tools/call from the (untrusted) MCP App iframe to the host's callTool. A malicious or compromised MCP server could therefore invoke any tool the host wired up.

    Tool invocation from MCP App content is now deny-by-default: if allowedTools is not explicitly provided, all tools/call requests are rejected. To expose tools to an app, list them in handlers.allowedTools.

  • Updated dependencies [2a150f8]

  • Updated dependencies [b44b051]

  • Updated dependencies [aeda373]

  • Updated dependencies [25a64f8]

  • Updated dependencies [375fdd7]

  • Updated dependencies [f18b08f]

  • Updated dependencies [b4507d5]

    • @ai-sdk/mcp@2.0.0-canary.63
    • @ai-sdk/provider-utils@5.0.0-canary.48
    • ai@7.0.0-canary.172
Check out latest releases or
releases around vercel/ai @ai-sdk/react@4.0.0-canary.175

Don't miss a new ai release

NewReleases is sending notifications on new releases.

Get notifications