Authentication in http mode

What's Changed

• deps(deps): bump axios from 1.13.6 to 1.14.0 by @dependabot[bot] in #122
• deps(deps): bump zod-to-json-schema from 3.25.1 to 3.25.2 by @dependabot[bot] in #119
• ci(deps): bump google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml from 2.3.3 to 2.3.5 by @dependabot[bot] in #116
• deps(deps): bump undici from 7.24.3 to 7.24.6 by @dependabot[bot] in #121
• deps(deps): bump @modelcontextprotocol/sdk from 1.27.1 to 1.28.0 by @dependabot[bot] in #120
• ci(deps): bump sigstore/cosign-installer from 4.1.0 to 4.1.1 by @dependabot[bot] in #117
• docker(deps): bump node from 25.8.1-alpine3.22 to 25.8.2-alpine3.22 in the nodejs-docker-updates group by @dependabot[bot] in #115
• deps(deps): bump path-to-regexp from 8.3.0 to 8.4.0 by @dependabot[bot] in #114
• deps-dev(deps-dev): bump handlebars from 4.7.8 to 4.7.9 by @dependabot[bot] in #113
• deps(deps): bump picomatch by @dependabot[bot] in #112
• docker(deps): bump node from 25.8.2-alpine3.22 to 25.9.0-alpine3.22 in the nodejs-docker-updates group by @dependabot[bot] in #123
• deps-dev(deps-dev): bump @types/node from 22.19.15 to 22.19.17 in the nodejs-updates group by @dependabot[bot] in #124
• deps(deps): bump @hono/node-server from 1.19.10 to 1.19.13 by @dependabot[bot] in #126
• deps(deps): bump hono from 4.12.7 to 4.12.12 by @dependabot[bot] in #127
• deps(deps): bump axios from 1.14.0 to 1.15.0 by @dependabot[bot] in #128
• ci(deps): bump actions/github-script from 8 to 9 by @dependabot[bot] in #129
• docs: add missing token scope for data export in README by @ivan-gudak in #130
• deps(deps): bump follow-redirects from 1.15.11 to 1.16.0 by @dependabot[bot] in #131
• deps(deps): bump hono from 4.12.12 to 4.12.14 by @dependabot[bot] in #132
• deps(deps): bump ip-address and express-rate-limit by @dependabot[bot] in #133
• deps(deps): bump hono from 4.12.14 to 4.12.18 by @dependabot[bot] in #134
• deps(deps): bump axios from 1.15.0 to 1.16.0 by @dependabot[bot] in #135
• deps(deps): bump fast-uri from 3.1.0 to 3.1.2 by @dependabot[bot] in #136
• docker(deps): bump node from 25.9.0-alpine3.22 to 26.1.0-alpine3.22 in the nodejs-docker-updates group by @dependabot[bot] in #137
• ci(deps): bump google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml from 2.3.5 to 2.3.8 by @dependabot[bot] in #138
• ci(deps): bump sigstore/cosign-installer from 4.1.1 to 4.1.2 by @dependabot[bot] in #139
• deps-dev(deps-dev): bump @types/node from 22.19.17 to 22.19.18 in the nodejs-updates group by @dependabot[bot] in #140
• deps(deps): bump qs from 6.14.2 to 6.15.2 by @dependabot[bot] in #141
• deps-dev(deps-dev): bump @types/node from 22.19.18 to 22.19.19 in the nodejs-updates group by @dependabot[bot] in #144
• deps(deps): bump the major-updates group across 1 directory with 3 updates by @dependabot[bot] in #145
• docker(deps): bump node from 26.1.0-alpine3.22 to 26.2.0-alpine3.22 in the nodejs-docker-updates group by @dependabot[bot] in #143
• feat: per-user token authentication for HTTP mode by @ivan-gudak in #142
• deps(deps): bump hono from 4.12.18 to 4.12.23 by @dependabot[bot] in #147
• ci: add SonarCloud static analysis scan by @ivan-gudak in #146
• deps-dev(deps-dev): bump @types/node from 22.19.19 to 22.19.20 in the nodejs-updates group by @dependabot[bot] in #148
• deps-dev(deps-dev): bump the dev-dependencies group across 1 directory with 3 updates by @dependabot[bot] in #149
• deps(deps): bump @modelcontextprotocol/sdk from 1.28.0 to 1.29.0 by @dependabot[bot] in #151
• deps(deps): bump js-yaml from 4.1.1 to 4.2.0 by @dependabot[bot] in #150
• deps(deps): bump ajv from 8.18.0 to 8.20.0 by @dependabot[bot] in #152
• deps(deps): bump axios from 1.16.0 to 1.17.0 by @dependabot[bot] in #153
• deps(deps): bump undici from 8.3.0 to 8.4.0 by @dependabot[bot] in #154
• docker(deps): bump node from 26.2.0-alpine3.22 to 26.3.0-alpine3.22 in the nodejs-docker-updates group across 1 directory by @dependabot[bot] in #155

Full Changelog: v0.5.8...v0.6.0

Fixing bugs and vulnerabilities

ci(deps): bump sigstore/cosign-installer from 4.0.0 to 4.1.0 (#105)

Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v4.0.0...v4.1.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-version: 4.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

BugFixing: http mode for OpenAI based tools

Bugfix/server shuts down in http mode (#90)

* bug: create a factory function for stateless McpServer instances

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* bug: enable JSON response for stateless HTTP transport to support MCP clients

* release: prepare v0.5.7 with security fixes and dependency updates

- Bump version to 0.5.7
- Fix security vulnerabilities: hono 4.12.0→4.12.2, diff 4.0.2→4.0.4, minimatch patch updates
- Update CHANGELOG.md with 0.5.7 release notes

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

---------

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

Release v0.5.6

Updated ajv dependency to version 8.18.0 to address SNYK-JS-AJV-15274295 security vulnerability (ReDoS in schema compilation)

Release v0.5.5

Changes in v0.5.5

• Release v0.5.5 (ec3fee6)
• Improve logging UX for stdio transport and add human-readable console format (#67) (3bb8c45)
• deps(deps): bump @modelcontextprotocol/sdk from 1.25.3 to 1.26.0 (#65) (6ca838d)
• Feature/multi format config (#58) (f6917ca)
• ISSUE54 implement flexible logging configuration (#55) (be52b4a)
• deps(deps): bump undici from 7.19.1 to 7.20.0 (#53) (35594ee)
• deps(deps): bump commander from 14.0.2 to 14.0.3 (#52) (dc77f60)
• deps(deps): bump axios from 1.13.3 to 1.13.4 (#51) (56aaf53)
• docker(deps): bump node in the nodejs-docker-updates group (#50) (883ff16)
• deps(deps): bump hono from 4.11.4 to 4.11.7 (#49) (975cd59)
• deps(deps): bump undici from 7.18.2 to 7.19.1 (#45) (46aa919)
• deps(deps): bump @modelcontextprotocol/sdk from 1.21.2 to 1.25.3 (#44) (916311b)
• docker(deps): bump node in the nodejs-docker-updates group (#42) (983db35)
• deps(deps): bump axios from 1.13.2 to 1.13.3 (#43) (3fa8a86)
• deps-dev(deps-dev): bump prettier in the dev-dependencies group (#41) (e2016e8)
• deps(deps): bump @modelcontextprotocol/sdk from 1.21.2 to 1.25.2 (#21) (5a6ea20)
• Release v0.5.3 (#47) (b30b133)
• Multi-environment support (#40) (1568e1b)

Usage

npx -y @dynatrace-oss/dynatrace-managed-mcp-server@0.5.5

Release v0.5.3

Changes in v0.5.3

• Release v0.5.3 (076ef5b)
• Multi-environment support (#40) (1568e1b)

Usage

npx -y @dynatrace-oss/dynatrace-managed-mcp-server@0.5.3

Release v0.5.0

Changes in v0.5.0

• Merge pull request #38 from dynatrace-oss/feat/ghcr-release-and-prepare-0.5.0 (11e8f81)
• feat: Prepare ghcr container image release and prepare 0.5.0 * add multi-arch arm image (86b35d6)
• Merge pull request #37 from dynatrace-oss/feat/ghcr-release-and-prepare-0.5.0 (7b51fa7)
• deps-dev(deps-dev): bump prettier in the dev-dependencies group (#36) (758c48b)
• deps-dev(deps-dev): bump @types/node in the nodejs-updates group (#35) (5ccd7e7)
• ci(deps): bump actions/setup-python from 5 to 6 (#34) (a821bd1)
• ci(deps): bump google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml (#33) (07ef9c1)
• ci(deps): bump actions/checkout from 4 to 6 (#32) (60fce2f)
• feat: Prepare ghcr container image release and prepare 0.5.0 * add cosign signing (dee7b42)
• feat: Prepare ghcr container image release and prepare 0.5.0 * prettier fixup (bc3ff1e)
• feat: Prepare ghcr container image release and prepare 0.5.0 (9016b21)

Usage

npx -y @dynatrace-oss/dynatrace-managed-mcp-server@0.5.0

Release v0.4.0

Changes in v0.4.0

• Merge pull request #29 from dynatrace-oss/fix/fix-mcp-name-and-prepare-0.4.0-release (8a9d5f5)
• fix: fix mcp name and prepare release 0.4.0 (33352db)

Usage

npx -y @dynatrace-oss/dynatrace-managed-mcp-server@0.4.0

Release v0.3.0

Changes in v0.3.0

• Merge pull request #28 from dynatrace-oss/chore/prepare-release-0.3.0 (83007cf)
• chore(release): prepare 0.3.0 version release (b8abfe9)
• Merge pull request #27 from dynatrace-oss/fix/fix-validation-against-server-schema (bc2af83)
• fix: fix server json validation and implement validation workflow (94232cb)

Usage

npx -y @dynatrace-oss/dynatrace-managed-mcp-server@0.3.0

Release v0.2.0

Changes in v0.2.0

• Merge pull request #26 from dynatrace-oss/chore/update-package-version-0.2.0-for-release (12fce98)
• chore: prepare 0.2.0 version release - fix changelog code style (dc4b71b)
• chore: prepare 0.2.0 version release (7b3e1e2)
• chore: update package version to 0.2.0 for next release (adae089)
• Merge pull request #25 from dynatrace-oss/fix/update-server-schema-11-12-2025 (decdb4d)
• fix: Update server schema to 11-12-2025 to fix release (9f62caa)

Usage

npx -y @dynatrace-oss/dynatrace-managed-mcp-server@0.2.0