Download Latest Version v3.2.7 - Security Fix _ Bug Fixes source code.tar.gz (244.3 kB)
Email in envelope

Get an email when there's a new version of Airtable MCP

Home / v1.2.4
Name Modified Size InfoDownloads / Week
Parent folder
Critical Security Release - v1.2.4 source code.tar.gz 2025-08-14 88.7 kB
0
Critical Security Release - v1.2.4 source code.zip 2025-08-14 106.8 kB
0
README.md 2025-08-14 2.9 kB
0
Totals: 3 Items   198.4 kB 0

🚨 Critical Security Release - v1.2.4

⚠️ IMPORTANT SECURITY FIX

This release addresses a critical security vulnerability where API tokens were hardcoded in test files. All users should update immediately.

πŸ”’ Security Fixes

  • Removed hardcoded API tokens from all test files (fixes [#7])
  • Test files now require environment variables for credentials
  • Added comprehensive security documentation
  • Previously exposed tokens have been invalidated

πŸ› Bug Fixes

  • Fixed Smithery deployment issues (fixes [#5], [#6])
  • Resolved HTTP 400 errors when connecting through Smithery
  • Fixed "API key is required for remote connections" error
  • Switched to stable JavaScript implementation for cloud deployments
  • Added missing Dockerfile for Glama listing (fixes [#4])

✨ Improvements

  • Added environment variable support for secure credential management
  • Improved logging with configurable levels (ERROR, WARN, INFO, DEBUG)
  • Enhanced error messages for better debugging
  • Updated documentation with clear setup instructions

πŸ“¦ What's Changed

  • test_client.py - Now uses environment variables
  • test_mcp_comprehensive.js - Now uses environment variables
  • airtable_simple.js - Added env variable and logging support
  • smithery.yaml - Fixed to use JavaScript implementation
  • Dockerfile.node - New optimized Docker image for Node.js
  • SECURITY_NOTICE.md - Important security information
  • README.md - Complete rewrite with better instructions

πŸ’” Breaking Changes

Test files now require environment variables:

:::bash
export AIRTABLE_TOKEN="your_token"
export AIRTABLE_BASE_ID="your_base_id"

πŸ“‹ Migration Instructions

  1. Update to v1.2.4: bash npm install -g @rashidazarang/airtable-mcp@latest

  2. Set up environment variables: bash export AIRTABLE_TOKEN="your_personal_token" export AIRTABLE_BASE_ID="your_base_id"

  3. Update your MCP configuration (see README for details)

  4. Restart your MCP client

πŸ™ Acknowledgments

Special thanks to @BXXC-SDXZ for responsibly disclosing the security vulnerability, and to @ricklesgibson and @punkpeye for reporting the deployment issues.

⚠️ Security Note

If you were using the previously exposed tokens, they have been revoked. You must use your own Airtable credentials going forward.

Full Changelog: https://github.com/rashidazarang/airtable-mcp/compare/v1.2.3...v1.2.4

NPM Publish Commands

:::bash
# Make sure you're logged in to npm
npm login

# Update version (already done in package.json)
npm version 1.2.4

# Publish to npm
npm publish --access public

# Create git tag
git tag -a v1.2.4 -m "Critical security fix and Smithery deployment fixes"
git push origin v1.2.4
Source: README.md, updated 2025-08-14