<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0">
  <channel>
    <title>PyPI recent updates for mcpdone-audit</title>
    <link>https://pypi.org/project/mcpdone-audit/</link>
    <description>Recent updates to the Python Package Index for mcpdone-audit</description>
    <language>en</language>    <item>
      <title>0.6.0</title>
      <link>https://pypi.org/project/mcpdone-audit/0.6.0/</link>
      <description>Static analyzer for MCP server repos: 4 checks (BadHost / Starlette CVE-2026-48710, FastMCP wrapper-layer asyncio.run bug, loose @mcp.tool() schemas, subprocess command-injection w/ cross-function taint propagation).</description>
      <pubDate>Wed, 01 Jul 2026 19:14:15 GMT</pubDate>
    </item>    <item>
      <title>0.5.0</title>
      <link>https://pypi.org/project/mcpdone-audit/0.5.0/</link>
      <description>Static security + correctness audit for MCP server repos. Ships four checks. v0.5 fixes a v0.4 false-positive family where list-concatenation (e.g. `[&#34;kubectl&#34;] + args + [&#34;get&#34;]`) was misclassified as string-interpolation in command_injection.</description>
      <pubDate>Tue, 30 Jun 2026 17:40:51 GMT</pubDate>
    </item>  </channel>
</rss>