toolhive
ToolHive is an enterprise-grade platform for running and managing Model Context Protocol (MCP) servers.
Why this rank:Strong adoptionRecent releaseHealthy release cadence
Description
ToolHive is an enterprise-grade platform for running and managing Model Context Protocol (MCP) servers.
README
ToolHive runs every MCP server in an isolated container, enforces identity and access policy per request, and gives platform teams the observability they need to put MCP in production.
Here are some of the more common use cases for ToolHive:
| Developers. Run MCP servers with more security and more (token) savings | Platform Engineers. Run MCP on your existing Kubernetes infrastructure | Enterprises. Self-host MCP servers and stay in control of your data |
| Connect Claude Code, Cursor, GitHub Copilot, or your preferred client to MCP servers with a single click or command. ToolHive wraps every MCP server in an isolated container with a minimal permission file (no local credentials) and uses semantic tool search to reduce your token usage by up to 85%. |
Put an end to shadow MCP use by your developers, and give your security team the audit logs and identity enforcement they require. ToolHive includes a Kubernetes operator, so you can declare policies, integrate with your IdP and observability stack, emit OTel traces, and more โฆ all with familiar tools and patterns. |
Most MCP solutions are SaaS, but your compliance requirements prohibit sensitive info from being processed by SaaS providers. ToolHive is the exception that allows you to self-host your MCP registry, gateway, etc. You can pilot the entire platform, and when youโre ready to scale, Stacklokโs got the added capabilities and expert team ready! |
| Download ToolHive and get started | Explore the Kubernetes operator in our docs Read more about running MCP on Kubernetes |
Learn more about Stacklokโs platform Compare open source ToolHive and Stacklok Enterprise |
- ๐ฅ Downloads
- ๐ Documentation
- ๐ Quickstart guides:
- ๐ฌ Discord
- ๐ค Contributing
Stacklok Enterprise
ToolHive architecture: Gateway, Registry Server, Runtime, and Portal
ToolHive is built on a modular architecture to streamline secure MCP server management and integration. Here's how the main components work.
Define dedicated endpoints from which your teams can securely and efficiently access tools.
- Orchestrate multiple tools into a virtual MCP with a deterministic workflow engine
- Define access policies and network endpoints
- Centralize control of security policy, authentication, authorization, auditing, etc.
- Integrate with your IdP for SSO (OIDC/OAuth compatible)
- Customize and filter tools and descriptions to improve performance and reduce token usage
- Connect with local clients like Claude Desktop, Cursor, VS Code, and VS Code Server
๐ฆ Registry Server
Curate a catalog of trusted servers your teams can quickly discover and deploy.
- Integrate with the official MCP registry
- Add custom MCP servers
- Group servers based on role or use case
- Manage your registry with an API-driven interface (or embed in existing workflows for seamless integration and governance)
- Verify provenance and sign servers with built-in security controls
- Preset configurations and permissions for a frictionless user experience
Deploy, run, and manage MCP servers locally or in a Kubernetes cluster with security guardrails.
- Deploy MCP servers in the cloud via Kubernetes for enterprise scalability
- Run MCP servers locally via Docker or Podman
- Proxy remote MCP servers securely for unified management
- Kubernetes Operator for fleet and resource management
- Leverage OpenTelemetry and Prometheus for monitoring and audit logging
Simplify MCP adoption for developers and knowledge workers across your enterprise
- Cross-platform desktop app and browser-based cloud UI
- Make it easy for admins to curate MCP servers and tools
- Automate server discovery
- Install MCP servers with a single click
- Compatible with hundreds of AI clients
- Admins curate and organize MCP servers in the Registry, configuring access and policies.
- Users discover and request MCP servers from the Portal, and ToolHive orchestrates installation and access.
- Runtime securely deploys and manages MCP servers across local and cloud environments, integrating seamlessly with existing SDLC workflows, exporting analytics, and enforcing fine-grained access control.
- Gateway handles all inbound traffic, secures context and credentials, optimizes tool selection, and applies organizational policies.
Individual developers can get started in minutes with the desktop UI or CLI, then apply the same concepts in enterprise environments.
Key features:
- Run any MCP server from a container image, or build one dynamically from common package managers
- Manage encrypted secrets and control network isolation with simple, local tooling
- Test and validate MCP servers using built-in tools like the official MCP Inspector
- Optimize token usage and tool execution with the MCP Optimizer
Get started with the UI: Quickstart, How-to guides
Get started with the CLI: Quickstart, How-to guides, Command reference
MCP guides: learn how to run common MCP servers with ToolHive
Teams and organizations manage MCP servers and registries centrally using familiar Kubernetes workflows.
Key features:
- Custom Resource Definitions for MCP servers, registries, and other ToolHive components
- Secure execution with container-based isolation and multi-namespace support
- Automated service creation and discovery, with ingress integration for secure access
- Enterprise-grade security and observability: OIDC/OAuth SSO, secure token exchange, audit logging, OpenTelemetry, and Prometheus metrics
- Hybrid registry server: curate from upstream registries, dynamically register local MCP servers, or proxy trusted remote services
Get started: Quickstart, How-to guides, CRD reference, Example manifests
ToolHive's complete solution for teams and enterprises supports MCP servers across all environments: on developer machines, inside your Kubernetes clusters, or hosted externally by trusted SaaS providers.
End users access approved MCP servers through a secure, browser-based cloud UI. Developers can also connect using the ToolHive CLI or desktop UI for advanced integration and testing workflows.
Enterprise teams can also leverage ToolHive to integrate MCP servers into custom internal tools, agentic workflows, or chat-based interfaces, using the same runtime and access controls.
We welcome contributions and feedback from the community!
- ๐ Report issues
- ๐ฌ Join our Discord
If you have ideas, suggestions, or want to get involved, check out our contributing guide or open an issue. Join us in making ToolHive even better!
|
Contribute to the CLI, API, and Kubernetes Operator (this repo):
Contribute to the UI, registry, and docs:
|
|
This project is licensed under the Apache 2.0 License.
Release History
| Version | Changes | Urgency | Date |
|---|---|---|---|
| v0.29.0 | ## What's Changed * Admit obo in MCPExternalAuthConfig CRD enum by @tgrunnagle in https://github.com/stacklok/toolhive/pull/5361 * Consolidate authserver DCR types onto pkg/oauthproto by @tgrunnagle in https://github.com/stacklok/toolhive/pull/5372 * Add CIMD storage decorator for embedded AS by @amirejaz in https://github.com/stacklok/toolhive/pull/5343 * Address post-approval review feedback on `VirtualMCPServer` authz by @blkt in https://github.com/stacklok/toolhive/pull/5368 * Clear all cach | High | 6/3/2026 |
| v0.28.3 | ## What's Changed * Resolve authz `ConfigMap` for `VirtualMCPServer` by @blkt in https://github.com/stacklok/toolhive/pull/5290 * Upgrade golang.org/x/crypto to v0.52.0 by @amirejaz in https://github.com/stacklok/toolhive/pull/5366 * Enable Renovate vulnerability alerts to trigger immediately by @amirejaz in https://github.com/stacklok/toolhive/pull/5367 * Restore ServerBuilder.WithMiddleware and WithRoute by @reyortiz3 in https://github.com/stacklok/toolhive/pull/5369 * Mirror MCPExternalAuthCo | High | 5/22/2026 |
| v0.28.0 | ## What's Changed * Update module github.com/modelcontextprotocol/registry to v1.7.7 [SECURITY] by @renovate[bot] in https://github.com/stacklok/toolhive/pull/5230 * Add TOOLHIVE_SKIP_UPDATE_CHECK env var to disable update checks by @lujunsan in https://github.com/stacklok/toolhive/pull/5264 * Add RFC 7523 JWT Bearer grant package by @jhrozek in https://github.com/stacklok/toolhive/pull/5262 * Extract DCR resolver into pkg/auth/dcr by @tgrunnagle in https://github.com/stacklok/toolhive/pull/5198 | High | 5/19/2026 |
| v0.27.2 | ## What's Changed * Update github/codeql-action digest to 68bde55 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/5236 * Update anthropics/claude-code-action digest to 476e359 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/5235 * Forward MCPServerEntry headerForward to vMCP outbound requests by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/5239 * Tolerate spec-violating list methods on backend init by @tgrunnagle in https://github.com/stacklok/toolhive/ | High | 5/12/2026 |
| v0.27.0 | ## What's Changed * Support CIMD as preferred OAuth client registration for thv run by @amirejaz in https://github.com/stacklok/toolhive/pull/5085 * Add --client flag to thv llm setup and teardown by @yrobla in https://github.com/stacklok/toolhive/pull/5144 * Carry forward upstream refresh token on re-authorization by @jhrozek in https://github.com/stacklok/toolhive/pull/5132 * Add follow-up CIMD E2E and unit tests by @amirejaz in https://github.com/stacklok/toolhive/pull/5130 * Add authserver D | High | 5/7/2026 |
| v0.26.1 | ## What's Changed * Make Cedar group entity type name configurable by @jhrozek in https://github.com/stacklok/toolhive/pull/5121 * Add authserver DCR discovery and config surface by @tgrunnagle in https://github.com/stacklok/toolhive/pull/5041 * fix(authserver): send scope explicitly on upstream token refresh by @dallinstevens in https://github.com/stacklok/toolhive/pull/5096 * test(e2e): add all-client LLM gateway e2e matrix + fix secret provider bugs by @yrobla in https://github.com/stacklok/t | High | 4/30/2026 |
| v0.26.0 | ## What's Changed * Drop legacy ToolHive registry format references from docs by @rdimitrov in https://github.com/stacklok/toolhive/pull/5087 * Update module github.com/stacklok/toolhive-catalog to v0.20260428.0 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/5080 * Update module github.com/shirou/gopsutil/v4 to v4.26.3 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/5061 * Add interactive TUI dashboard for managing MCP servers by @peppescg in https://github.com/sta | High | 4/29/2026 |
| v0.24.1 | <!-- Release-Triggered-By: rdimitrov --> ## What's Changed * Bump releaseo_version input to v0.0.4 by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/5007 * Honor --debug flag in vmcp by @jhrozek in https://github.com/stacklok/toolhive/pull/5008 * Fix Cedar upstream-claim evaluation on VirtualMCPServer by @jhrozek in https://github.com/stacklok/toolhive/pull/5002 * Add shared OAuth constants and expose ExchangeConfig fields by @jhrozek in https://github.com/stacklok/toolhive/pull/5003 | High | 4/23/2026 |
| v0.24.0 | <!-- Release-Triggered-By: rdimitrov --> ## What's Changed * Compare CRDs against the last release tag, not the rendered chart by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4987 * Enforce v1beta1 API stability by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4991 * Re-run api-compat workflow on label changes by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4993 * Add no-op companion for API Compatibility required check by @ChrisJBurns in https://github.com | High | 4/22/2026 |
| v0.23.1 | <!-- Release-Triggered-By: rdimitrov --> ## What's Changed * Propagate auth errors through stale cache fallback by @reyortiz3 in https://github.com/stacklok/toolhive/pull/4981 * Unify docs-website release pipeline: new assets + retire dispatch chain by @rdimitrov in https://github.com/stacklok/toolhive/pull/4982 * Add advisory CRD schema compatibility CI check by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4980 * Release v0.23.1 by @stacklokbot in https://github.com/stacklok/toolh | High | 4/21/2026 |
| v0.23.0 | # ๐ **Toolhive v0.23.0 is live!** A milestone release: ToolHive's CRD API graduates from `v1alpha1` to `v1beta1`, signaling API stability โ with a zero-downtime upgrade path that keeps existing `v1alpha1` resources working untouched. Two targeted operator bug fixes round out the release. ## ๐ Deprecations - **`toolhive.stacklok.dev/v1alpha1`** deprecated in favour of **`toolhive.stacklok.dev/v1beta1`** โ will be removed in a future release ([#4849](https://github.com/stacklok/toolhive | High | 4/21/2026 |
| v0.22.0 | # ๐ **Toolhive v0.22.0 is live!** This release lays the groundwork for the new `thv vmcp` command suite (serve / validate / init with optional TEI-backed semantic optimization โ currently hidden while it stabilizes), expands identity coverage for Cedar authorization across Entra, Okta, Auth0, and Keycloak token shapes, and brings a wave of quality-of-life improvements to the skills, audit, secrets, and operator flows. ## ๐ New Features - Upstream OAuth providers now accept `additional | High | 4/21/2026 |
| v0.21.0 | # ๐ **ToolHive v0.21.0 is live!** This release removes deprecated CRD fields ahead of v1beta1 API promotion, adds Cedar role-based authorization support, introduces new registry API endpoints, and fixes several bugs including OTLP endpoint path encoding and operator reconcile loops. ## โ ๏ธ Breaking Changes - **Inline `telemetry` field removed from MCPServer and MCPRemoteProxy** โ manifests using `spec.telemetry` must migrate to `telemetryConfigRef` with an MCPTelemetryConfig resource ([ | High | 4/16/2026 |
| v0.20.0 | # ToolHive v0.20.0 Release Notes **Released**: 2026-04-14 **Full Changelog**: [v0.19.0...v0.20.0](https://github.com/stacklok/toolhive/compare/v0.19.0...v0.20.0) --- ## Breaking Changes ### 1. GroupRef changed from bare string to typed struct ([#4809](https://github.com/stacklok/toolhive/pull/4809)) **Impact**: All users deploying `MCPServer`, `MCPRemoteProxy`, `MCPServerEntry`, or `VirtualMCPServer` CRDs with a `groupRef` field. The `groupRef` field on all four CRD types chan | High | 4/14/2026 |
| v0.19.0 | <!-- Release-Triggered-By: reyortiz3 --> ## Breaking Changes > **Action required before upgrading.** Review each item and apply the migration steps. ### [Operator] Remove `enforceServers` and image validation from `MCPRegistry` (#4776) The `enforceServers` feature and its image validation logic have been removed from the `MCPRegistry` CRD. This feature was silently non-functional since PR #2568 removed the backing data sources โ the registry-storage ConfigMap it depended on was never p | High | 4/13/2026 |
| v0.18.0 | <!-- Release-Triggered-By: jerm-dro --> ## What's Changed * Add per-user rate limit types and limiter support by @jerm-dro in https://github.com/stacklok/toolhive/pull/4692 * Route MCP sessions to the originating backend pod using httptrace by @yrobla in https://github.com/stacklok/toolhive/pull/4673 * Fix health-check close failing auth in vMCP BackendClient by @yrobla in https://github.com/stacklok/toolhive/pull/4613 * Add LRU capacity to ValidatingCache, remove sentinel pattern, add storage | High | 4/10/2026 |
| v0.17.0 | # ๐ ToolHive v0.17.0 Release Notes **Release Date:** April 9, 2026 **Full Changelog:** [v0.16.0...v0.17.0](https://github.com/stacklok/toolhive/compare/v0.16.0...v0.17.0) This release introduces a powerful new way to catalog remote MCP servers, tightens up security, and brings several quality-of-life improvements to the operator and proxy. It also includes some important breaking changes โ please check the upgrade notes below before deploying. ## Breaking Changes ### CRD Phase Val | Medium | 4/9/2026 |
| v0.16.0 | <!-- Release-Triggered-By: reyortiz3 --> # v0.16.0 - CRD API stabilization, token-bucket rate limiting, MCPServerEntry, and Redis HA session improvements This release continues the operator API stabilization track โ hardening CRD field types, merge semantics, and condition naming before the v1beta1 promotion โ while shipping the first pieces of rate limiting and MCPServerEntry as zero-infrastructure remote server references. Redis-backed session storage gains cross-pod restore and expiry co | High | 4/8/2026 |
| v0.15.0 | # ๐ **Toolhive v0.15.0 is live!** This release brings significant improvements to OIDC/auth configuration, policy enforcement, secrets management, and observability โ along with some important breaking changes and deprecations to be aware of before upgrading. **โ ๏ธ Breaking Changes** Please review these carefully before upgrading: - **Removed CRD fields** โ Several deprecated fields have been removed from `MCPServer` and `MCPRemoteProxy`. Manifests using `spec.port`, `spec.targetPort | Medium | 4/3/2026 |
| v0.14.1 | <!-- Release-Triggered-By: amirejaz --> ## What's Changed * Add scoped and user secret providers with system key isolation by @amirejaz in https://github.com/stacklok/toolhive/pull/4229 * Respect global config for OTel tracing and metrics enabled by @gkatz2 in https://github.com/stacklok/toolhive/pull/4326 * Preserve scopes in token refresh request by @gkatz2 in https://github.com/stacklok/toolhive/pull/4428 * Return JSON-RPC errors for expired sessions by @gkatz2 in https://github.com/stacklok | Medium | 3/30/2026 |
| v0.14.0 | <!-- Release-Triggered-By: JAORMX --> ## What's Changed * Wire embedded auth server into VirtualMCPServer converter and deployment by @jhrozek in https://github.com/stacklok/toolhive/pull/4383 * Implement upstream_inject strategy and SubjectProviderName by @jhrozek in https://github.com/stacklok/toolhive/pull/4390 * Update github/codeql-action digest to c10b806 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/4415 * Update codecov/codecov-action digest to 75cd116 by @renovate[bot] | Medium | 3/30/2026 |
| v0.13.1 | <!-- Release-Triggered-By: jerm-dro --> ## What's Changed * Update diagrams and links in README by @danbarr in https://github.com/stacklok/toolhive/pull/4397 * Add edited trigger to PR size labeler workflow by @danbarr in https://github.com/stacklok/toolhive/pull/4398 * Fix macOS symlink test failures and upgrade phonenumbers dependency by @reyortiz3 in https://github.com/stacklok/toolhive/pull/4399 * Inject Redis session storage config into vMCP ConfigMap by @yrobla in https://github.com/stack | Medium | 3/27/2026 |
| v0.13.0 | <!-- Release-Triggered-By: eleftherias --> ## What's Changed * Handle shutdown timeout in thv HTTP server by @JAORMX in https://github.com/stacklok/toolhive/pull/4328 * Preserve prompt message structure through vMCP relay by @JAORMX in https://github.com/stacklok/toolhive/pull/4334 * Guard PID reset against replacement process by @gkatz2 in https://github.com/stacklok/toolhive/pull/4325 * Add RegisterProviderFactory extension point to pkg/config by @aponcedeleonch in https://github.com/stacklok | Medium | 3/26/2026 |
| v0.12.5 | <!-- Release-Triggered-By: aponcedeleonch --> ## What's Changed * Fix MCPRegistry operator to update deployments on spec changes by @rdimitrov in https://github.com/stacklok/toolhive/pull/4237 * Update module github.com/stacklok/toolhive-catalog to v0.20260319.0 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/4230 * Wire non-interactive registry auth for serve mode by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4111 * Fix release workflow: cosign-installer upgrade a | Medium | 3/24/2026 |
| v0.12.4 | ## Changelog * 81f9d84a2f07bc277eca92e0ae03f423ab54c71f: Preserve tool annotations and output schema in GetAdaptedTools (#4238) (@JAORMX) * 3ae086f7ff7266e7f91667b3bbd5949ee2dffa1c: Release v0.12.4 (#4240) (@stacklokbot) | Low | 3/19/2026 |
| v0.12.3 | <!-- Release-Triggered-By: aponcedeleonch --> ## What's Changed * Switch to upstream MCP registry format and add skills provider methods by @rdimitrov in https://github.com/stacklok/toolhive/pull/4171 * Remove non-spec progress/update method from MCP parser by @majiayu000 in https://github.com/stacklok/toolhive/pull/4188 * Add E2E tests for skills overwrite protection and CLI by @JAORMX in https://github.com/stacklok/toolhive/pull/4010 * Update github.com/tailscale/hujson digest to ecc657c by @ | Low | 3/19/2026 |
| v0.12.2 | <!-- Release-Triggered-By: amirejaz --> ## What's Changed * Update module github.com/stacklok/toolhive-catalog to v0.20260313.0 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/4130 * Remove NewManagerWithRegistry in favor of NewManager by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4132 * Add swagger dependency parsing for external types by @rdimitrov in https://github.com/stacklok/toolhive/pull/4125 * Add registry login & logout CLI commands by @ChrisJBurns in http | Low | 3/17/2026 |
| v0.12.1 | <!-- Release-Triggered-By: JAORMX --> ## What's Changed * Inject tool annotations into context during list filtering by @JAORMX in https://github.com/stacklok/toolhive/pull/4129 * Release v0.12.1 by @stacklokbot in https://github.com/stacklok/toolhive/pull/4131 **Full Changelog**: https://github.com/stacklok/toolhive/compare/v0.12.0...v0.12.1 | Low | 3/13/2026 |
| v0.12.0 | <!-- Release-Triggered-By: JAORMX --> ## What's Changed * Add TLS support for Redis connections by @aron-muon in https://github.com/stacklok/toolhive/pull/4068 * Remove discovery cache to fix flaky vMCP tests by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/4110 * Make the token refresh code reusable for vMCP and testable by @jhrozek in https://github.com/stacklok/toolhive/pull/4117 * Update module github.com/stacklok/toolhive-catalog to v0.20260306.0 by @renovate[bot] in https://gi | Low | 3/13/2026 |
| v0.11.3 | <!-- Release-Triggered-By: aponcedeleonch --> ## What's Changed * Add multi-backend optimizer acceptance test by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/4049 * Add optimizer+circuit breaker acceptance test for vMCP by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/4052 * Return RFC 6750 compliant JSON error responses from auth middleware by @amirejaz in https://github.com/stacklok/toolhive/pull/4057 * Add remaining Claude Code subagent definitions by @ChrisJBu | Low | 3/12/2026 |
| v0.11.2 | <!-- Release-Triggered-By: aponcedeleonch --> ## What's Changed * Clean up stale release branch before Create Release PR retry by @amirejaz in https://github.com/stacklok/toolhive/pull/4035 * Enrich optimizer tool descriptions for better LLM usage by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/4031 * fix: oauth issues and add tokenResponseMapping for non-standard providers by @aron-muon in https://github.com/stacklok/toolhive/pull/4009 * Auto-chunk TEI embedding requests to res | Low | 3/9/2026 |
| v0.11.1 | <!-- Release-Triggered-By: amirejaz --> ## What's Changed * Add E2E tests for Skills API endpoints by @JAORMX in https://github.com/stacklok/toolhive/pull/3997 * Add atomic writes and file locking for secrets file by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/3998 * Integrate skills with groups system by @reyortiz3 in https://github.com/stacklok/toolhive/pull/3980 * Add group support to skills API by @reyortiz3 in https://github.com/stacklok/toolhive/pull/4000 * Fix MCP server | Low | 3/6/2026 |
| v0.11.0 | <!-- Release-Triggered-By: amirejaz --> ## What's Changed * Prepare optimizer for production by refactoring and renaming by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/3909 * Handle embedded ResourceContents in vmcp bridge by @JAORMX in https://github.com/stacklok/toolhive/pull/3953 * Release proxy mutex before draining connections in Stop() by @gkatz2 in https://github.com/stacklok/toolhive/pull/3970 * Implement skills REST handlers with `project_root` by @JAORMX in https://gi | Low | 3/4/2026 |
| v0.10.2 | <!-- Release-Triggered-By: ChrisJBurns --> ## What's Changed * Fix GoReleaser CLI docs tarball upload path by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/3966 * Release v0.10.2 by @stacklokbot in https://github.com/stacklok/toolhive/pull/3967 **Full Changelog**: https://github.com/stacklok/toolhive/compare/v0.10.1...v0.10.2 | Low | 3/2/2026 |
| v0.10.1 | <!-- Release-Triggered-By: aponcedeleonch --> ## What's Changed * Migrate pkg/vmcp from logger shim to slog by @rdimitrov in https://github.com/stacklok/toolhive/pull/3883 * Fix slog key names, remove secret logging, and clean up messages (follow up to 3864) by @jhrozek in https://github.com/stacklok/toolhive/pull/3887 * Add EmbeddingServerRef to VirtualMCPServer for optimizer integration by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/3839 * Migrate cmd/ and test/e2e/ to slog, | Low | 3/2/2026 |
| v0.10.0 | <!-- Release-Triggered-By: rdimitrov --> ## What's Changed * Add Handler(ctx) method to vmcp Server for embeddable use by @JAORMX in https://github.com/stacklok/toolhive/pull/3834 * Add vector embedding support and hybrid search to ToolStore by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/3808 * Add skills to upstream registry types and schema by @rdimitrov in https://github.com/stacklok/toolhive/pull/3838 * Update module github.com/redis/go-redis/v9 to v9.18.0 by @renovate[bot] | Low | 2/18/2026 |
| v0.9.4 | <!-- Release-Triggered-By: rdimitrov --> ## What's Changed * Address miscellanious post-merge review feedback for AWS STS role mapper by @jhrozek in https://github.com/stacklok/toolhive/pull/3708 * Use CEL variable binding instead of string interpolation for claim matching by @jhrozek in https://github.com/stacklok/toolhive/pull/3709 * Revert "Release v0.9.3" by @rdimitrov in https://github.com/stacklok/toolhive/pull/3716 * Create GitHub release even when tag already exists by @ChrisJBurns in h | Low | 2/16/2026 |
| v0.9.3 | <!-- Release-Triggered-By: rdimitrov --> ## What's Changed * Fix Helm chart OCI publish path to match original registry location by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/3635 * Add structured status conditions for ToolConfigRef and ExternalAuthConfigRef validation by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/3634 * Fix ServiceAccount secret accumulation on OpenShift by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/3627 * Bump e2e test lifecycle ti | Low | 2/9/2026 |
| v0.9.2 | <!-- Release-Triggered-By: dmjb --> ## What's Changed * Add omitempty to UserinfoEndpoint JSON tag by @jhrozek in https://github.com/stacklok/toolhive/pull/3601 * Integration Tests for Embedded Auth Server by @tgrunnagle in https://github.com/stacklok/toolhive/pull/3556 * Adopt env package from toolhive-core by @JAORMX in https://github.com/stacklok/toolhive/pull/3572 * Fix audit middleware file handle leak on shutdown by @jhrozek in https://github.com/stacklok/toolhive/pull/3074 * Update regis | Low | 2/6/2026 |
| v0.9.1 | <!-- Release-Triggered-By: ChrisJBurns --> ## What's Changed * Update the arch docs for the registry by @rdimitrov in https://github.com/stacklok/toolhive/pull/3550 * Fix CRD Docs by @aponcedeleonch in https://github.com/stacklok/toolhive/pull/3555 * Embedded Auth Server Runner Integration by @tgrunnagle in https://github.com/stacklok/toolhive/pull/3540 * Integrate Embedded Auth Server with Runner by @tgrunnagle in https://github.com/stacklok/toolhive/pull/3541 * Adopt httperr from toolhive-cor | Low | 2/4/2026 |
| v0.9.0 | ## What's Changed * Update stacklok/releaseo action to v0.0.2 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/3521 * triggers docs at the end of the release workflow by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/3523 * Add core OAuth authorization server interface and implementation by @jhrozek in https://github.com/stacklok/toolhive/pull/3513 * Limit RBAC permissions for inline mode VirtualMCPServers by @yrobla in https://github.com/stacklok/toolhive/pull/3504 * Up | Low | 2/2/2026 |
| v0.8.3 | ## Unified Versioning Starting with this release, **all ToolHive components now share the same version number**: - CLI (`thv`) - Container images - Helm charts (`toolhive-operator`, `toolhive-operator-crds`) The Helm charts now also reference container images with the same version tag, ensuring complete version alignment across the entire stack. ### Why some versions appear to have "skipped" You may notice that some components jumped version numbers: | Component | Previous Ve | Low | 1/29/2026 |
| toolhive-operator-crds-0.0.106 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Update Go version to 1.25.6 to fix security vulnerabilities by @ChrisJBurns in https://github.com/stacklok/toolhive/pull/3490 * Update registry from toolhive-registry release v2026.01.28 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3496 * Add deploying-vmcp-locally skill by @jerm-dro in https://github.com/stacklok/toolhive/pull/3494 * Update anthropics/claude-code-action digest to | Low | 1/29/2026 |
| toolhive-operator-crds-0.0.105 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Update anchore/sbom-action action to v0.22.1 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/3465 * Update build and group commands logging strategy by @eleftherias in https://github.com/stacklok/toolhive/pull/3461 * Add configurable UserInfo field mapping and UserInfo support for authserver's OAuth provider by @jhrozek in https://github.com/stacklok/toolhive/pull/3466 * Integrate status r | Low | 1/28/2026 |
| v0.8.2 | ## What's Changed * Make healthchecks for remote workloads optional by @dmjb in https://github.com/stacklok/toolhive/pull/3462 * Bump Helm chart to 0.5.28 for ToolHive v0.8.1 release by @jerm-dro in https://github.com/stacklok/toolhive/pull/3467 **Full Changelog**: https://github.com/stacklok/toolhive/compare/v0.8.1...v0.8.2 | Low | 1/27/2026 |
| toolhive-operator-0.5.28 | A Helm chart for deploying the ToolHive Operator into Kubernetes. ## What's Changed * Make healthchecks for remote workloads optional by @dmjb in https://github.com/stacklok/toolhive/pull/3462 * Bump Helm chart to 0.5.28 for ToolHive v0.8.1 release by @jerm-dro in https://github.com/stacklok/toolhive/pull/3467 **Full Changelog**: https://github.com/stacklok/toolhive/compare/v0.8.1...toolhive-operator-0.5.28 | Low | 1/27/2026 |
| v0.8.1 | ## What's Changed * Skip token injection when token exchange active by @jhrozek in https://github.com/stacklok/toolhive/pull/3385 * Make private IP error message context-agnostic by @yrobla in https://github.com/stacklok/toolhive/pull/3403 * Map thvCABundle to OIDCConfig.CACertPath by @jhrozek in https://github.com/stacklok/toolhive/pull/3391 * Add authorization and callback handlers for authserver by @jhrozek in https://github.com/stacklok/toolhive/pull/3370 * Return 404 for not-found erro | Low | 1/27/2026 |
| toolhive-operator-crds-0.0.104 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Update the registry format converters to support a few missing properties by @rdimitrov in https://github.com/stacklok/toolhive/pull/3426 * Update registry from toolhive-registry release v2026.01.24 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3432 * Update registry from toolhive-registry release v2026.01.24 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3434 | Low | 1/27/2026 |
| toolhive-operator-crds-0.0.103 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Add token endpoint handler by @jhrozek in https://github.com/stacklok/toolhive/pull/3408 * Add KeyManager for signing key lifecycle to authserver by @jhrozek in https://github.com/stacklok/toolhive/pull/3407 * Add EmbeddingServer CRD for deploying HuggingFace embedding models by @ptelang in https://github.com/stacklok/toolhive/pull/3323 ## New Contributors * @ptelang made their first contribution in htt | Low | 1/23/2026 |
| toolhive-operator-0.5.27 | A Helm chart for deploying the ToolHive Operator into Kubernetes. ## What's Changed * Add token endpoint handler by @jhrozek in https://github.com/stacklok/toolhive/pull/3408 * Add KeyManager for signing key lifecycle to authserver by @jhrozek in https://github.com/stacklok/toolhive/pull/3407 * Add EmbeddingServer CRD for deploying HuggingFace embedding models by @ptelang in https://github.com/stacklok/toolhive/pull/3323 ## New Contributors * @ptelang made their first contribution in https://g | Low | 1/23/2026 |
| toolhive-operator-crds-0.0.102 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Fix authorization bypass for unknown MCP methods by @yrobla in https://github.com/stacklok/toolhive/pull/3406 * Update anthropics/claude-code-action digest to 8341a56 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/3415 * Bump github.com/theupdateframework/go-tuf/v2 from 2.3.0 to 2.3.1 by @dependabot[bot] in https://github.com/stacklok/toolhive/pull/3379 * Fix race condition when deleting | Low | 1/23/2026 |
| toolhive-operator-0.5.26 | A Helm chart for deploying the ToolHive Operator into Kubernetes. ## What's Changed * bump version of yardstick to 1.1.1 by @yrobla in https://github.com/stacklok/toolhive/pull/3420 * Bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 by @dependabot[bot] in https://github.com/stacklok/toolhive/pull/3412 * Bump github.com/sigstore/sigstore from 1.10.0 to 1.10.4 by @dependabot[bot] in https://github.com/stacklok/toolhive/pull/3414 * Update toolhive images to v0.8.0 by @renovate[bot] in https://gi | Low | 1/23/2026 |
| toolhive-operator-crds-0.0.101 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Update registry from toolhive-registry release v2026.01.23 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3416 * Add StatusReporter abstraction for vMCP runtime by @4t8dd in https://github.com/stacklok/toolhive/pull/3159 **Full Changelog**: https://github.com/stacklok/toolhive/compare/toolhive-operator-crds-0.0.100...toolhive-operator-crds-0.0.101 | Low | 1/23/2026 |
| toolhive-operator-crds-0.0.100 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Add authorization and callback handlers for authserver by @jhrozek in https://github.com/stacklok/toolhive/pull/3370 * Return 404 for not-found errors in workload API endpoints by @dmjb in https://github.com/stacklok/toolhive/pull/3409 * feat(auth): persist OAuth tokens across workload restarts by @flfeurmou-indeed in https://github.com/stacklok/toolhive/pull/3382 * add bearerToken type to MCPExternalAut | Low | 1/22/2026 |
| toolhive-operator-crds-0.0.99 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Skip token injection when token exchange active by @jhrozek in https://github.com/stacklok/toolhive/pull/3385 * Make private IP error message context-agnostic by @yrobla in https://github.com/stacklok/toolhive/pull/3403 * Map thvCABundle to OIDCConfig.CACertPath by @jhrozek in https://github.com/stacklok/toolhive/pull/3391 **Full Changelog**: https://github.com/stacklok/toolhive/compare/v0.8.0...toolhi | Low | 1/22/2026 |
| v0.8.0 | ## What's Changed * Fix keyctl password not re-prompted after incorrect entry by @JAORMX in https://github.com/stacklok/toolhive/pull/3334 * Update toolhive images to v0.7.2 by @renovate[bot] in https://github.com/stacklok/toolhive/pull/3336 * Update registry from toolhive-registry release v2026.01.19 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3333 * Add thv status command for detailed workload info by @carlos-gn in https://github.com/stacklok/toolhive/pull/3161 * | Low | 1/22/2026 |
| toolhive-operator-crds-0.0.98 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Run the API E2E test server as a standalone process by @dmjb in https://github.com/stacklok/toolhive/pull/3356 * feat(vmcp): integrate a dummy optimizer by @jerm-dro in https://github.com/stacklok/toolhive/pull/3312 **Full Changelog**: https://github.com/stacklok/toolhive/compare/toolhive-operator-crds-0.0.97...toolhive-operator-crds-0.0.98 | Low | 1/20/2026 |
| toolhive-operator-crds-0.0.97 | A Helm chart for installing the ToolHive Operator CRDs into Kubernetes. ## What's Changed * Update registry from toolhive-registry release v2026.01.19 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3333 * Add thv status command for detailed workload info by @carlos-gn in https://github.com/stacklok/toolhive/pull/3161 * Call audit config validation in vMCP server by @yrobla in https://github.com/stacklok/toolhive/pull/3340 * Update anthropics/claude-code-action digest to a0 | Low | 1/20/2026 |
| v0.7.2 | ## What's Changed * Update toolhive-expert agent with current codebase state by @JAORMX in https://github.com/stacklok/toolhive/pull/3309 * Add proxy_port support to MCP server registry by @leonardorhojas in https://github.com/stacklok/toolhive/pull/3300 * Bump operator to use toolhive 0.7.1 by @dmjb in https://github.com/stacklok/toolhive/pull/3305 * Update registry from toolhive-registry release v2026.01.16 by @github-actions[bot] in https://github.com/stacklok/toolhive/pull/3317 * Update | Low | 1/19/2026 |
Dependencies & License Audit
Loading dependencies...
Similar Packages
toolhive-registry-serverAn API server that implements the official MCP Registry API, providing standardised access to MCP servers from multiple backends, including file-based and other API-compliant registries.v1.4.6
tekmetric-mcp๐ Ask questions about your shop data in natural language and get instant answers about appointments, customers, and repair orders with Tekmetric MCP.main@2026-06-05
whatsapp-agentkitBuild custom WhatsApp AI agents with Claude Code in under 30 minutes, no coding needed.main@2026-06-05
trpc-agent-gotrpc-agent-go is a powerful Go framework for building intelligent agent systems using large language models (LLMs) and tools.v1.10.0
More from stacklok
toolhive-studioToolHive is an application that allows you to install, manage and run MCP servers and connect them to AI agents
toolhive-catalogToolHive's registry catalog of MCP servers
toolhive-registry-serverAn API server that implements the official MCP Registry API, providing standardised access to MCP servers from multiple backends, including file-based and other API-compliant registries.
More in MCP Servers
PlanExeCreate a plan from a description in minutes
agentroveYour own Claude Code UI, sandbox, in-browser VS Code, terminal, multi-provider support (Anthropic, OpenAI, GitHub Copilot, OpenRouter), custom skills, and MCP servers.
ProxmoxMCP-PlusEnhanced Proxmox MCP server with advanced virtualization management and full OpenAPI integration.
node9-proxyThe Execution Security Layer for the Agentic Era. Providing deterministic "Sudo" governance and audit logs for autonomous AI agents.