Sourced from @​modelcontextprotocol/sdk's releases.

1.24.3

What's Changed

• chore: fix dev dependency security vulnerabilities by @​felixweinberger in modelcontextprotocol/typescript-sdk#1227
• chore(deps): bump express from 5.0.1 to 5.2.1 in the npm_and_yarn group across 1 directory by @​dependabot[bot] in modelcontextprotocol/typescript-sdk#1228
• fix: release HTTP connections after POST responses by @​mattzcarey in modelcontextprotocol/typescript-sdk#1214
• fix: skip priming events and closeSSEStream for old protocol versions by @​felixweinberger in modelcontextprotocol/typescript-sdk#1233
• chore: bump version for patch release by @​felixweinberger in modelcontextprotocol/typescript-sdk#1235

Full Changelog: https://github.com/modelcontextprotocol/typescript-sdk/compare/1.24.2...1.24.3

1.24.2

What's Changed

• feat: add optional resource annotations by @​vhorvath2010 in modelcontextprotocol/typescript-sdk#954
• chore: refresh CLAUDE.md by @​LucaButBoring in modelcontextprotocol/typescript-sdk#1217
• refactor: make Server class framework-agnostic by moving express to separate module by @​cytle in modelcontextprotocol/typescript-sdk#1223
• chore: bump version to 1.24.2 by @​pcarleton in modelcontextprotocol/typescript-sdk#1224

New Contributors

• @​vhorvath2010 made their first contribution in modelcontextprotocol/typescript-sdk#954
• @​cytle made their first contribution in modelcontextprotocol/typescript-sdk#1223

Full Changelog: https://github.com/modelcontextprotocol/typescript-sdk/compare/1.24.1...1.24.2

1.24.1

What's Changed

• fix(streamableHttp): fix infinite retries when maxRetries is set to 0 by @​mrorigo in modelcontextprotocol/typescript-sdk#1216
• chore: update protocol version to 2025-11-25 by @​dsp-ant in modelcontextprotocol/typescript-sdk#1218
• chore: bump version for release by @​felixweinberger in modelcontextprotocol/typescript-sdk#1219

New Contributors

• @​mrorigo made their first contribution in modelcontextprotocol/typescript-sdk#1216

Full Changelog: https://github.com/modelcontextprotocol/typescript-sdk/compare/1.24.0...1.24.1

1.24.0

Summary

This release brings us up to speed with the latest MCP spec 2025-11-25. Take a look at the latest spec as well as the release blog post.

What's Changed

• fix: update spec links from latest to draft by @​domdomegg in modelcontextprotocol/typescript-sdk#1171
• Make sure to consume HTTP error response bodies by @​GreenStage in modelcontextprotocol/typescript-sdk#1173
• docs: add GET request handling for streamableHttp stateless mode by @​saharis9988 in modelcontextprotocol/typescript-sdk#1161
• SEP-1686: Tasks by @​LucaButBoring in modelcontextprotocol/typescript-sdk#1041
• Fix JSON parse error on SSE events with empty data by @​felixweinberger in modelcontextprotocol/typescript-sdk#1184
• Fix StreamableHTTPClientTransport instantiation by @​yuwzho in modelcontextprotocol/typescript-sdk#944
• feat: eslint rule to prefer node protocols by @​mattzcarey in modelcontextprotocol/typescript-sdk#1187
• fix: call tasks/result to deliver side-channel messages by @​felixweinberger in modelcontextprotocol/typescript-sdk#1185
• Add invalid_target oauth error (rfc 8707) by @​GreenStage in modelcontextprotocol/typescript-sdk#1183
• fix(client): use StreamableHTTPError instead of plain Error in send() by @​yamadashy in modelcontextprotocol/typescript-sdk#1178

... (truncated)

• 724fe6e chore: bump version for patch release (#1235)
• 2f76ac8 fix: skip priming events and closeSSEStream for old protocol versions (#1233)
• 0a374fc fix: release HTTP connections after POST responses (#1214)
• 2d2c8ff chore(deps): bump express from 5.0.1 to 5.2.1 in the npm_and_yarn group acros...
• 545dbe1 chore: fix dev dependency security vulnerabilities (#1227)
• d23674d chore: bump version to 1.24.2 (#1224)
• 7c9257c refactor: make Server class framework-agnostic by moving express to separate ...
• 401a189 chore: refresh CLAUDE.md (#1217)
• 4b5c25d feat: add optional resource annotations (#954)
• 6dd7cd4 chore: bump version for release (#1219)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)