chore: Update dependencies and fix version strings#29
Conversation
- Fix security vulnerabilities via npm audit fix (qs) - Update @modelcontextprotocol/sdk 1.20.1 → 1.25.1 - Update @types/node 20.19.23 → 20.19.27 - Update tsx 4.20.6 → 4.21.0 - Read version from package.json instead of hardcoding in: - src/index.ts (MCP server version) - src/api/client.ts (User-Agent header) 🤖 Generated with [Claude Code](https://claude.ai/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Pull Request ReviewThank you for this maintenance PR! Overall, this is a solid update that addresses security vulnerabilities and dependency updates. Here's my detailed feedback: ✅ Positive Aspects
🔍 Code Quality Reviewsrc/api/client.ts (lines 6-10, 28)import { createRequire } from "module";
const require = createRequire(import.meta.url);
const pkg = require("../../package.json");Good: This approach works well for ESM modules. The version is now dynamically read at runtime. Minor consideration: The
src/index.ts (lines 23-26, 47)const require = createRequire(import.meta.url);
const pkg = require("../package.json");Good: Same pattern applied consistently. Path is 🔒 Security Analysis
|
Summary
qsdependency vianpm audit fix@modelcontextprotocol/sdk1.20.1 → 1.25.1@types/node20.19.23 → 20.19.27tsx4.20.6 → 4.21.0package.jsondynamically instead of hardcoding0.1.0in source filesTest plan
npm auditshows 0 vulnerabilitiesnpm run buildsucceeds🤖 Generated with Claude Code