Skip to content

Track GHSA-58pv-8j8x-9vj2 #2184

New issue
New issue
Open
Task
Open
Track GHSA-58pv-8j8x-9vj2#2184
Task
Assignees
scottschreckengaust
Labels
dependenciesPull requests that update a dependency file or issues from dependenices
@scottschreckengaust

Description

@scottschreckengaust
scottschreckengaust
opened on Jan 15, 2026

pypa/setuptools#5137 (comment)

Vendored dependencies are updated mechanically and the mechanics should be run by a maintainer, so I'll be declining this PR, and following up with one of my own.

@jaraco, thank you for addressing. I'm looking forward to the pull request and release for a setuptools>80.9.0 with an updated specifier for jaraco-context>=6.1.0 to resolve the GHSA-58pv-8j8x-9vj2 "HIGH" vulnerability.

Originally posted by @scottschreckengaust in #5140

Metadata

Metadata

Assignees

Labels

dependenciesPull requests that update a dependency file or issues from dependenices

Type

Task

Projects

awslabs/mcp Project

Status

In progress

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions