Deprecated, yanked and partial renaming support #893
Conversation
…check for publish permission for new server
|
Fixes #637 |
tadasant
left a comment
tadasant
left a comment
There was a problem hiding this comment.
Thank you @pree-dew for taking this on!
Added inline comments, and also: let's update docs/reference/cli/commands.md with notes on how to use the new CLI commands/options.
Some additional feedback by way of Claude (that I've picked out and agree with):
1. newName pointing to itself
There's no check preventing:
mcp-publisher status io.github.user/my-server --all-versions --status deprecated \
--new-name io.github.user/my-serverThe validateNewName function checks that the new server exists and user has permissions, but doesn't check if newName == currentServerName. This would create a self-referential deprecation.
2. --all-versions isn't atomic
Looking at updateAllVersionsStatus (lines 123-157):
for _, v := range versions {
if err := updateServerStatus(...); err != nil {
failureCount++
} else {
successCount++
}
}Each version is updated in a separate HTTP request. If one fails mid-way:
- Some versions are deprecated, others aren't
- No rollback mechanism
- The
newNamecould be set on some versions but not others
Can we make this happen in a transaction?
3. newName without --all-versions at API level
The CLI enforces --new-name requires --all-versions, but the API doesn't:
// In validateNewName - only checks status, not all-versions
if input.Status != string(model.StatusDeprecated) && input.Status != string(model.StatusYanked) {
return huma.Error400BadRequest("new_name can only be used with deprecated or yanked status")
}Someone hitting the API directly could set newName on a single version, leaving other versions without it. This creates inconsistent state.
| StatusActive Status = "active" | ||
| StatusDeprecated Status = "deprecated" | ||
| StatusDeleted Status = "deleted" | ||
| StatusYanked Status = "yanked" |
There was a problem hiding this comment.
While I agree with the semantic reason for this change, I worry a bit about this being a breaking change. I think we don't currently have any data in the official registry using deleted, but I suspect a lot of downstream consumers do.
So by default, I'd be inclined to keep it deleted (knowing we really mean yanked), and maybe leave an issue as something we consider addressing for a bigger, breaking GA launch of the registry.
| Status model.Status `json:"status" enum:"active,deprecated,yanked" doc:"Server lifecycle status"` | ||
| StatusChangedAt time.Time `json:"statusChangedAt" format:"date-time" doc:"Timestamp when the server status was last changed"` | ||
| StatusMessage *string `json:"statusMessage,omitempty" doc:"Optional message explaining status change (e.g., deprecation reason, migration guidance)"` | ||
| AlternativeURL *string `json:"alternativeUrl,omitempty" format:"uri" doc:"Optional URL to alternative/replacement server for deprecated or yanked servers"` |
There was a problem hiding this comment.
Do we need AlternativeURL in addition to StatusMessage and NewName? It feels redundant to me, and if someone really wants a non-registry reference (which would be NewName), they could put the URL in the StatusMessage. Or is there compelling reason to have the structured AlternativeURL?
There was a problem hiding this comment.
I think with a dedicated field, consumers/tools can:
- Automatically create clickable links in IDEs/terminals
- Extract URLs programmatically without regex parsing
- Validate that it's actually a valid URL
- Different authors format differently, making it hard for tooling to extract URLs reliably.
- The URL might not always be a direct alternative:
- Migration guides
- Documentation explaining the deprecation
- Security advisories
- Company announcements
- Package registries can enforce:
- URL format validation
- HTTPS requirement
- Domain allowlists
- Link checking
internal/api/handlers/v0/edit.go
Outdated
| // For now, only allow status changes for admins | ||
| // Future: Implement logic to allow server authors to change active <-> deprecated | ||
| // but only admins can set to deleted | ||
| // but only admins can set to yanked |
There was a problem hiding this comment.
This comment is now outdated; should delete
internal/api/handlers/v0/edit.go
Outdated
| Authorization string `header:"Authorization" doc:"Registry JWT token with edit permissions" required:"true"` | ||
| ServerName string `path:"serverName" doc:"URL-encoded server name" example:"com.example%2Fmy-server"` | ||
| Version string `path:"version" doc:"URL-encoded version to edit" example:"1.0.0"` | ||
| Status string `query:"status" doc:"New status for the server (active, deprecated, yanked)" required:"false" enum:"active,deprecated,yanked"` |
There was a problem hiding this comment.
This endpoint design feels awkward to me. I know we had precedent here with status already, but I think overloading this shape with being responsible for both Body (core ServerJSON) changes as well as status & associated fields (statusmessage, newname)
Should we move status wrangling over to a dedicated PATCH endpoint?
To-date, status has only been an admin tool anyway, so I'm not worried about a breaking change in the API here.
There was a problem hiding this comment.
Agree. Added the details of new endpoints in the comment. #893 (comment)
| apiv0 "github.com/modelcontextprotocol/registry/pkg/api/v0" | ||
| ) | ||
|
|
||
| func StatusCommand(args []string) error { |
There was a problem hiding this comment.
I'm not sure about calling this command status. It's also used for setting e.g. newName, which isn't necessarily associated with a status change. Can we make it more generic, like mcp-publisher update, mcp-publisher patch or something similar?
There was a problem hiding this comment.
I am happy to accommodate this change. Reasons that I thought are:
- Domain clarity: Status describes the domain action
(lifecycle management), while update/patch describes
the technical operation. Domain-focused naming is
better for CLI UX. - Separation of concerns: The project already has clear separation:
- publish → add new version
- edit → update server configuration
- status → manage lifecycle state
-
Constraint coupling: Since newName is ONLY valid with deprecated/yanked status, it's fundamentally part of the status workflow, not independent metadata.
-
User mental model: When users want to deprecate/yank a server, they'll naturally think "status". When they want to change description/remotes, they'll think "edit".
Happy to hear your thoughts on this.
|
@tadasant Thank you for the review, I will address the points. Also wanted your feedback on these questions: Do we need bulk endpoint for status transitions, renaming for all servers? |
If I understand the question correctly, we'd want the ability to e.g. "deprecate all versions of server with name
Yes.
Ideally: it should show up on /servers?updated_since calls, but not by default on server details / server version history calls unless we provide some explicit query param that "unhides" them. |
Yes, for all versions of a server. Noted. I will accommodate recommended changes. |
|
New Endpoints Update Single Version Status Endpoint: PATCH /v0/servers/{serverName}/versions/{version}/status Summary: Update MCP server status Description: Update the status metadata of a specific version of an MCP server. Update All Versions Status Endpoint: PATCH /v0/servers/{serverName}/status Summary: Update status for all versions of an MCP server Description: Update the status metadata of all versions in a single transaction. |
Added this endpoint
Added a query parameter |
|
All review comments are addressed including Claude ones also. Few questions @tadasant @rdimitrov
Let me know if the changes makes sense, I will update the documentation accordingly. Happy to hear your feedback on PR. |
2 participants
Motivation and Context
Deprecation and yanking are standard requirements when it comes to manages servers(packages), many use cases like rebranding, security vulnerabilities in packages etc demand these kind of features.
How Has This Been Tested?
This has been tested via test cases and local setup
Breaking Changes
Types of changes
Checklist
Additional context