Skip to content

chore(deps): bump fastmcp from >=3.2.4 to >=3.4.2#41592

Merged
aminghadersohi merged 3 commits into
apache:masterfrom
aminghadersohi:sc-110817-bump-fastmcp
Jul 1, 2026
Merged

chore(deps): bump fastmcp from >=3.2.4 to >=3.4.2#41592
aminghadersohi merged 3 commits into
apache:masterfrom
aminghadersohi:sc-110817-bump-fastmcp

Conversation

@aminghadersohi

Copy link
Copy Markdown
Contributor

SUMMARY

Bumps the lower bound of the fastmcp optional dependency from >=3.2.4 to >=3.4.2, picking up the latest stable release.

No API or behavior changes — this is a minimum version floor update only.

BEFORE/AFTER SCREENSHOTS OR ANIMATED GIF

N/A — dependency-only change.

TESTING INSTRUCTIONS

  1. Install with the fastmcp extra: pip install -e ".[fastmcp]"
  2. Verify fastmcp==3.4.2 (or later) is resolved.
  3. Run the MCP-related tests if available.

ADDITIONAL INFORMATION

  • Has associated issue:
  • Required feature flags:
  • Changes UI
  • Includes DB Migration (follow approval process in SIP-59)
    • Migration is atomic, supports rollback & is backwards-compatible
    • Confirm DB migration upgrade and downgrade tested
    • Runtime estimates and downtime expectations provided
  • Introduces new feature or API
  • Removes existing feature or API

@codecov

codecov Bot commented Jun 30, 2026

Copy link
Copy Markdown

Codecov Report

❌ Patch coverage is 50.00000% with 1 line in your changes missing coverage. Please review.
✅ Project coverage is 64.42%. Comparing base (fd9c84b) to head (cacd704).
⚠️ Report is 3 commits behind head on master.

Files with missing lines Patch % Lines
superset/mcp_service/jwt_verifier.py 50.00% 1 Missing ⚠️
Additional details and impacted files
@@            Coverage Diff             @@
##           master   #41592      +/-   ##
==========================================
- Coverage   64.42%   64.42%   -0.01%     
==========================================
  Files        2668     2668              
  Lines      147182   147184       +2     
  Branches    33947    33947              
==========================================
- Hits        94821    94817       -4     
- Misses      50646    50650       +4     
- Partials     1715     1717       +2     
Flag Coverage Δ
hive 39.10% <50.00%> (+<0.01%) ⬆️
mysql 57.65% <50.00%> (-0.01%) ⬇️
postgres 57.72% <50.00%> (-0.01%) ⬇️
presto 40.65% <50.00%> (+<0.01%) ⬆️
python 59.13% <50.00%> (-0.01%) ⬇️
sqlite 57.35% <50.00%> (-0.01%) ⬇️
unit 100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@aminghadersohi
aminghadersohi force-pushed the sc-110817-bump-fastmcp branch from 2ce0c13 to 3ff19a7 Compare June 30, 2026 22:31
fastmcp >= 3.4.2 (via fastmcp-slim) removed the self.jwt = JsonWebToken([...])
attribute from JWTVerifier when switching from authlib to joserfc internally.
MCPJWTVerifier.load_access_token() still calls self.jwt.decode(), so restore
self.jwt as an authlib JsonWebToken in MCPJWTVerifier.__init__() to fix the
AttributeError at runtime and in tests.
@aminghadersohi
aminghadersohi force-pushed the sc-110817-bump-fastmcp branch from 3ff19a7 to cacd704 Compare June 30, 2026 23:19
@aminghadersohi
aminghadersohi marked this pull request as ready for review July 1, 2026 00:19
@bito-code-review

bito-code-review Bot commented Jul 1, 2026

Copy link
Copy Markdown
Contributor

Code Review Agent Run #4cffc1

Actionable Suggestions - 0
Additional Suggestions - 1
  • requirements/development.txt - 1
    • Circular dependency pattern · Line 243-244
      The dependency relationship between `fastmcp` and `fastmcp-slim` shows `fastmcp-slim` coming from `fastmcp`, but there's no corresponding reverse attribution. This circular pattern should be verified for correctness.
Review Details
  • Files reviewed - 3 · Commit Range: f62e79b..cacd704
    • pyproject.toml
    • requirements/development.txt
    • superset/mcp_service/jwt_verifier.py
  • Files skipped - 0
  • Tools
    • MyPy (Static Code Analysis) - ✔︎ Successful
    • Astral Ruff (Static Code Analysis) - ✔︎ Successful
    • Whispers (Secret Scanner) - ✔︎ Successful
    • Detect-secrets (Secret Scanner) - ✔︎ Successful

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

  • /review - Manually triggers a full AI review.

  • /pause - Pauses automatic reviews on this pull request.

  • /resume - Resumes automatic reviews.

  • /resolve - Marks all Bito-posted review comments as resolved.

  • /abort - Cancels all in-progress reviews.

Refer to the documentation for additional commands.

Configuration

This repository uses Superset You can customize the agent settings here or contact your Bito workspace admin at evan@preset.io.

Documentation & Help

AI Code Review powered by Bito Logo

@aminghadersohi
aminghadersohi merged commit da4cae1 into apache:master Jul 1, 2026
95 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants