release: v0.3.0 — ship Layer 1 (npm 0.2.0 is the broken pre-Layer-1 build) + correct 2025-12-11 registry manifest#6
Conversation
…ld) + correct 2025-12-11 registry manifest npm @hashlock-tech/mcp@0.2.0 is already published from gitHead 68ee2da (pre-Layer-1: broken get_htlc, no error envelope/discovery/idempotency). The merged Layer 1 work is also 0.2.0 so it cannot be published — bump package.json + McpServer to 0.3.0. Replace the stale 2025-09-29 server.json (installation block, no packages[]) with the correct 2025-12-11 schema mirroring the live registry: packages[].version=0.3.0 (npm), top-level version=1.3.0 (registry manifest revision, > live 1.2.0; deliberately NOT the npm version), plus the streamable-http remote the stale file lacked. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
|
Warning Rate limit exceeded
You’ve run out of usage credits. Purchase more in the billing tab. ⌛ How to resolve this issue?After the wait time has elapsed, a review can be triggered using the We recommend that you space out your commits to avoid hitting the rate limit. 🚦 How do rate limits work?CodeRabbit enforces hourly rate limits for each developer per organization. Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout. Please see our FAQ for further information. 📝 WalkthroughWalkthroughThis PR coordinates a version 0.3.0 release with a server configuration restructure. Package version and MCP server version constant are bumped to 0.3.0, and server.json is migrated from a legacy manifest format to a new structure introducing packages and remotes configuration blocks for npm registry and HTTP endpoint details. ChangesVersion 0.3.0 Release and Configuration
Estimated code review effort🎯 2 (Simple) | ⏱️ ~8 minutes Poem
🚥 Pre-merge checks | ✅ 5✅ Passed checks (5 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
There was a problem hiding this comment.
Actionable comments posted: 1
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@server.json`:
- Line 26: The default value for HASHLOCK_ENDPOINT in the manifest is incorrect
(it uses "/api/graphql") and causes 401s because the server code expects
"/graphql" (see src/index.ts handling of HASHLOCK_ENDPOINT). Update the default
for the HASHLOCK_ENDPOINT entry to use "https://hashlock.markets/graphql" so it
matches the path used by the server; ensure the manifest key name
"HASHLOCK_ENDPOINT" remains unchanged and verify src/index.ts continues to
reference that environment/manifest variable.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: defaults
Review profile: CHILL
Plan: Pro Plus
Run ID: ce6ebbe8-577e-4e5d-a179-be0dd65b680c
📒 Files selected for processing (4)
mcp-registry.jsonpackage.jsonserver.jsonsrc/index.ts
💤 Files with no reviewable changes (1)
- mcp-registry.json
…odeRabbit) src/index.ts defaults to https://hashlock.markets/graphql because /api/graphql is the SSR proxy that 401s Bearer-JWT MCP clients. The manifest default (mirrored from the live registry entry) wrongly advertised /api/graphql, causing immediate 401s for users relying on it. Correcting here also fixes the live registry entry on the next re-publish. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
1 participant
Why
npm
@hashlock-tech/mcp@0.2.0is already published from gitHead68ee2da— the pre-Layer-1 build (brokenget_htlcvia getHTLCStatus, no structured errors, no discovery tools, no idempotency). The merged Layer 1 hardening (PR #4) is also0.2.0, so npm refuses to republish and the fix cannot reach agents. This bumps to 0.3.0.Changes
package.json+src/index.tsMcpServer version 0.2.0 → 0.3.0 (npm version; SemVer minor — critical get_htlc bugfix + additive discovery tools, no breaking removal)2025-09-29server.json(had aninstallationblock, nopackages[]— re-submitting it caused a prior bad registry publish) with the correct2025-12-11schema mirroring the live registry:packages[0].version: 0.3.0(npm), top-levelversion: 1.3.0= registry manifest-revision counter (live is 1.2.0; must exceed it to become isLatest — this is deliberately NOT the npm version; conflating them caused the 2026-05-12 re-submit), plus thestreamable-httpremote the stale file omittedgit grepconfirmed zero references to it anywhere in the repo outside the file itselfOperator steps after merge (not done here — irreversible / your creds)
npm publish(0.3.0) from merged mainnpm deprecate @hashlock-tech/mcp@0.2.0 "broken get_htlc — use >=0.3.0"mcp-publisherregistry re-publish (server.json now correct; bumps registry to 1.3.0, packages[].version 0.3.0; JWT TTL ~10min — login→validate→publish in one session)Follow-ups: hashlock-mcp#5 (SUI-chain validation).
🤖 Generated with Claude Code
Summary by CodeRabbit