dependabot[bot] opened a new pull request, #5049: URL: https://github.com/apache/servicecomb-java-chassis/pull/5049
Bumps [com.alibaba.nacos:nacos-client](https://github.com/alibaba/nacos) from 3.1.0 to 3.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/alibaba/nacos/releases";>com.alibaba.nacos:nacos-client's releases</a>.</em></p> <blockquote> <h2>3.1.1 (Nov 26th 2025)</h2> <p>This release focuses on enhancing the MCP and A2A (Agent-to-Agent) capabilities of Nacos, improving system stability, and refining security and configuration management. Key additions include support for batch registration of agent endpoints, merging versions during MCP server import, and enhanced flexibility in updating MCP servers with an <code>overrideExisting</code> option. The release also introduces default security configuration support for both inbound and outbound communication, laying the foundation for secure AI agent interactions.</p> <p>Detail changes in this version are listed below:</p> <h2>Feature</h2> <p><a href="https://redirect.github.com/alibaba/nacos/issues/13867";>#13867</a> Support override existing configuration when updating MCP server. <a href="https://redirect.github.com/alibaba/nacos/issues/13922";>#13922</a> Add thread pool configuration to allow core thread timeout. <a href="https://redirect.github.com/alibaba/nacos/issues/13946";>#13946</a> Refactor AgentEndpoint model and add new fields to support advanced protocol and queries. <a href="https://redirect.github.com/alibaba/nacos/issues/13953";>#13953</a> Add support for default security configurations, including selection and setup for inbound and outbound security schemes. <a href="https://redirect.github.com/alibaba/nacos/issues/13957";>#13957</a> Support batch registration of agent endpoints. <a href="https://redirect.github.com/alibaba/nacos/issues/13951";>#13951</a> Add configurable CORS filter for console module.</p> <h2>Enhancement/Refactor</h2> <p><a href="https://redirect.github.com/alibaba/nacos/issues/13822";>#13822</a> Separate responsibilities between client executor and login scheduled executor to prevent thread pool exhaustion. <a href="https://redirect.github.com/alibaba/nacos/issues/13863";>#13863</a> Optimize shutdown.sh script to combine multiple PIDs into a single line for cleaner process termination. <a href="https://redirect.github.com/alibaba/nacos/issues/13911";>#13911</a> Enhance importToolsFromMcp API to support streamable protocol servers. <a href="https://redirect.github.com/alibaba/nacos/issues/13914";>#13914</a> Upgrade checkStyle plugin version to improve code linting and maintainability. <a href="https://redirect.github.com/alibaba/nacos/issues/13945";>#13945</a> Support merging versions when importing MCP server specifications. <a href="https://redirect.github.com/alibaba/nacos/issues/13963";>#13963</a> Refactor List config apis to support return configTags and desc.</p> <h2>BugFix</h2> <p><a href="https://redirect.github.com/alibaba/nacos/issues/13140";>#13140</a> Fix consistent namespace handling for ConfigChangeNotifyRequest when client namespace is empty. <a href="https://redirect.github.com/alibaba/nacos/issues/13860";>#13860</a> Fix potential null pointer exception risk in ConfigMigrateService. <a href="https://redirect.github.com/alibaba/nacos/issues/13866";>#13866</a> Fix inability to edit imported MCP servers in the console. <a href="https://redirect.github.com/alibaba/nacos/issues/13869";>#13869</a> Fix error creating bean 'consoleHealthController' due to missing dependency injection. <a href="https://redirect.github.com/alibaba/nacos/issues/13877";>#13877</a> Fix namespaceId issue in McpRemoteHandler causing incorrect context propagation. <a href="https://redirect.github.com/alibaba/nacos/issues/13882";>#13882</a> Fix synchronization lock and add volatile keyword for TpsControlManager to ensure thread safety. <a href="https://redirect.github.com/alibaba/nacos/issues/13884";>#13884</a> Fix JSON parsing error in MCP server validation API during import. <a href="https://redirect.github.com/alibaba/nacos/issues/13902";>#13902</a> Fix deprecated Log4j2 package scanning warnings by updating logger initialization logic. <a href="https://redirect.github.com/alibaba/nacos/issues/13948";>#13948</a> Fix failure when updating agent card through the console interface. <a href="https://redirect.github.com/alibaba/nacos/issues/13959";>#13959</a> Fix Password update fails when deployed with independent console/server. <a href="https://redirect.github.com/alibaba/nacos/issues/13964";>#13964</a> Fix when nacos.extension.ai.enabled is false, nacos start failed.</p> <h2>Dependencies</h2> <p><a href="https://redirect.github.com/alibaba/nacos/issues/13879";>#13879</a> Add unit tests for AI-related components. <a href="https://redirect.github.com/alibaba/nacos/issues/13881";>#13881</a> Add utility APIs for development and testing purposes.</p> <h2>Deployment Required</h2> <table> <thead> <tr> <th>Module</th> <th>Java Required</th> </tr> </thead> <tbody> <tr> <td>Nacos-Server/Nacos-Console</td> <td>Java 17</td> </tr> <tr> <td>Nacos-Client</td> <td>Java 8</td> </tr> <tr> <td>Nacos-Maintainer-Client</td> <td>Java 8</td> </tr> </tbody> </table> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/alibaba/nacos/commit/7bfadeaf34a40351473a167be99c2d12076c533f";><code>7bfadea</code></a> build: Upgrade version to 3.1.1. (<a href="https://redirect.github.com/alibaba/nacos/issues/13971";>#13971</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/3e3beb063f5682c7c9f6f274c7634db7fecd0516";><code>3e3beb0</code></a> [ISSUE <a href="https://redirect.github.com/alibaba/nacos/issues/13964";>#13964</a>] Fix when nacos.extension.ai.enabled is false, nacos start fa… ...</li> <li><a href="https://github.com/alibaba/nacos/commit/19b24f5ef548f0634dda17eaad763088913e5120";><code>19b24f5</code></a> [ISSUE <a href="https://redirect.github.com/alibaba/nacos/issues/13951";>#13951</a>] Add configurable CORS filter for console module (<a href="https://redirect.github.com/alibaba/nacos/issues/13966";>#13966</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/ce3b2aceb2db3773e78ad3c16eabaac5fc1538f0";><code>ce3b2ac</code></a> feat(config):List config api support return configTags and desc (<a href="https://redirect.github.com/alibaba/nacos/issues/13963";>#13963</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/90946e11beb973fa7eb4f1c21ab1848d2f4a9767";><code>90946e1</code></a> fix(auth): Fix Password update fails when deployed with independent console/s...</li> <li><a href="https://github.com/alibaba/nacos/commit/a5ff5b983ed9e91eb088419c143f36cff2c0454f";><code>a5ff5b9</code></a> Support batch register agent endpoint (<a href="https://redirect.github.com/alibaba/nacos/issues/13957";>#13957</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/69e04d8488983ace73b5a9c63fc1f6d5b9d645bc";><code>69e04d8</code></a> 添加默认安全配置支持,包括下行和上行安全方案的选择与配置 (<a href="https://redirect.github.com/alibaba/nacos/issues/13953";>#13953</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/f9b17e1f29fe2d82fbae5b520ce421f94595c3fd";><code>f9b17e1</code></a> fix(ai): Fix update agent card failed by console. (<a href="https://redirect.github.com/alibaba/nacos/issues/13948";>#13948</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/699a72027f9b783602190994ac76d19fe8c44e39";><code>699a720</code></a> feat(a2a): Refactor AgentEndpoint and add new fields (<a href="https://redirect.github.com/alibaba/nacos/issues/13946";>#13946</a>)</li> <li><a href="https://github.com/alibaba/nacos/commit/c2d43659979bb82dcb29e01d6743205cb4397611";><code>c2d4365</code></a> Support merge versions when import mcp (<a href="https://redirect.github.com/alibaba/nacos/issues/13945";>#13945</a>)</li> <li>Additional commits viewable in <a href="https://github.com/alibaba/nacos/compare/3.1.0...3.1.1";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
