My Release Notes

by Tiny Tools

/vercel/ai/@ai-sdk/[email protected]
@ai-sdk/[email protected]
@ai-sdk/[email protected]
ai
View on GitHubView PackagePublished: Jun 12, 2026

Release Notes

Patch Changes

  • 555c5de: fix(react): deny MCP App tool calls by default when allowedTools is omitted

    experimental_MCPAppRenderer's bridge only enforced the allowedTools allowlist when it was non-null, so omitting allowedTools skipped the check and forwarded every tools/call from the (untrusted) MCP App iframe to the host's callTool. A malicious or compromised MCP server could therefore invoke any tool the host wired up.

    Tool invocation from MCP App content is now deny-by-default: if allowedTools is not explicitly provided, all tools/call requests are rejected. To expose tools to an app, list them in handlers.allowedTools.

  • Updated dependencies [2a150f8]

  • Updated dependencies [b44b051]

  • Updated dependencies [aeda373]

  • Updated dependencies [25a64f8]

  • Updated dependencies [375fdd7]

  • Updated dependencies [f18b08f]

  • Updated dependencies [b4507d5]