chore(deps): bump @ai-sdk/mcp from 1.0.36 to 1.0.51

[dependabot]

Bumps @ai-sdk/mcp from 1.0.36 to 1.0.51.

Changelog

Sourced from @​ai-sdk/mcp's changelog.

1.0.51

Patch Changes

• aa39fc8: fix (mcp): handle SSE messages without explicit event fields

1.0.50

Patch Changes

• ac40275: fix(mcp): validate oauth metadata issuer during discovery

1.0.49

Patch Changes

• 3e8d9ba: fix(mcp): lock first sse endpoint received via event

• 4fa7354: fix(mcp): prevent prototype-named tools from bypassing the schemas allowlist

  When using client.tools({ schemas }) to expose only an explicitly allowed subset of an MCP server's tools, the allowlist check used the in operator, which also matches inherited Object.prototype properties. A server-advertised tool named constructor, toString, __proto__, etc. would pass the check even though the developer never defined it in schemas, and was then exposed to the model and executable. The check now uses Object.hasOwn, so only explicitly defined tools are returned.

• Updated dependencies [bfa5864]

• Updated dependencies [f42aa79]

  • @​ai-sdk/provider-utils@​4.0.29

1.0.48

Patch Changes

• 26d93a4: fix(mcp): add optional hook to validate authorization servers
• 3c9ad04: fix(mcp): support official sdk protocol version negotiation
• Updated dependencies [942f2f8]
  • @​ai-sdk/provider-utils@​4.0.28

1.0.47

Patch Changes

• bf1d6bd: fix(mcp): prevent mcp oauth credential exfiltration during rediscovery

1.0.46

Patch Changes

... (truncated)

Commits

• 035ac30 Version Packages (#16118)
• aa39fc8 Backport: fix (mcp): handle SSE messages without explicit event fields (#16094)
• 63b3f60 Version Packages (#16086)
• ac40275 Backport: fix(mcp): validate oauth metadata issuer during discovery (#16083)
• bae9bab Version Packages (#16026)
• 3e8d9ba Backport: fix(mcp): lock first sse endpoint received via event (#16058)
• 4fa7354 Backport: fix(mcp): prevent prototype-named tools from bypassing the schemas ...
• 9ef2c3c Version Packages (#15998)
• 3c9ad04 Backport: fix(mcp): support official sdk protocol version negotiation (#16015)
• 26d93a4 Backport: fix(mcp): add optional hook to validate authorization servers (#16011)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for @​ai-sdk/mcp since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Summary by cubic

Upgrade @ai-sdk/mcp from 1.0.36 to 1.0.51 in packages/harness to pick up SSE handling fixes, tighter OAuth validation, and stricter tool allowlisting.

• Dependencies
  • Bump @ai-sdk/mcp → 1.0.51.
    • SSE: handle messages without event fields; lock the first SSE endpoint.
    • OAuth: validate issuer during discovery; prevent credential exfiltration; optional auth-server validation hook; protocol version negotiation.
    • Security: enforce schemas allowlist using Object.hasOwn to block prototype-named tools.
  • Indirect: @ai-sdk/provider → 3.0.10, @ai-sdk/provider-utils → 4.0.29; lockfile refreshed.

^{Written for commit d49cc6a. Summary will update on new commits.}

[minpeter]

Reviewed dependency-only update; changed files and CI are clean for merge.