Skip to content

MCP Gateway RoadmapΒΆ

Release Overview

This roadmap outlines the planned development milestones for MCP Gateway, organized by release version with completion status and due dates.

Release Status SummaryΒΆ

Release Due Date Completion Status Description
1.6.0 03 Feb 2026 0 % Open New MCP Servers and Agents
1.5.0 20 Jan 2026 0 % Open Documentation, Technical Debt, Bugfixes
1.4.0 06 Jan 2026 0 % Open Technical Debt and Quality
1.3.0 23 Dec 2025 0 % Open Catalog Improvements, A2A Improvements, MCP Standard Review and Sync, Technical Debt
1.2.0 09 Dec 2025 0 % Open Catalog Enhancements, Ratings, experience and UI
1.1.0 25 Nov 2025 0 % Open Post-GA Testing, Bugfixing, Documentation, Performance and Scale
1.0.0 11 Nov 2025 0 % Open General Availability & Release Candidate Hardening - stable & audited
0.9.0 14 Oct 2025 8 % Open Interoperability, marketplaces & advanced connectivity
0.8.0 30 Sep 2025 3 % Open Enterprise Security & Policy Guardrails
0.7.0 16 Sep 2025 78 % Open Multitenancy and RBAC (Private/Team/Global catalogs), Extended Connectivity, Core Observability & Starter Agents (OpenAI and A2A)
0.6.0 19 Aug 2025 100 % Closed Security, Scale & Smart Automation
0.5.0 05 Aug 2025 100 % Closed Enterprise Operability, Auth, Configuration & Observability
0.4.0 22 Jul 2025 100 % Closed Bugfixes, Security, Resilience (retry with exponential backoff), code quality and technical debt
0.3.0 08 Jul 2025 100 % Closed Annotations and multi-server tool federations
0.2.0 24 Jun 2025 100 % Closed Streamable HTTP, Infra-as-Code, Dark Mode
0.1.0 05 Jun 2025 100 % Closed Initial release

Release 0.1.0 - Initial releaseΒΆ

Release 0.1.0 - Completed (100%)

Due: 05 Jun 2025 | Status: Closed Initial release

✨ Completed Features (3)
  • βœ… #27 - Add /ready endpoint for readiness probe
  • βœ… #24 - Publish Helm chart for Kubernetes deployment
  • βœ… #23 - Add VS Code Devcontainer support for instant onboarding
πŸ› Completed Bugs (3)
  • βœ… #49 - [Bug]:make venv install serve fails with "./run-gunicorn.sh: line 40: python: command not found"
  • βœ… #37 - Issues with the gateway Container Image
  • βœ… #35 - Error when running in Docker Desktop for Windows
πŸ“š Completed Documentation (2)
  • βœ… #50 - virtual env location is incorrect
  • βœ… #30 - Deploying to Google Cloud Run

Release 0.2.0 - Streamable HTTP, Infra-as-Code, Dark ModeΒΆ

Release 0.2.0 - Completed (100%)

Due: 24 Jun 2025 | Status: Closed Streamable HTTP, Infra-as-Code, Dark Mode

✨ Completed Features (3)
  • βœ… #125 - Add Streamable HTTP MCP servers to Gateway
  • βœ… #109 - Implement Streamable HTTP Transport for Client Connections to MCP Gateway
  • βœ… #25 - Add "Version and Environment Info" tab to Admin UI
πŸ› Completed Bugs (2)
  • βœ… #85 - internal server error comes if there is any error while adding an entry or even any crud operation is happening
  • βœ… #51 - Internal server running when running gunicorn after install
πŸ“š Completed Documentation (3)
  • βœ… #98 - Add additional information for using the mcpgateway with Claude desktop
  • βœ… #71 - [Docs]:Documentation Over Whelming Cannot figure out the basic task of adding an MCP server
  • βœ… #21 - Deploying to Fly.io

Release 0.3.0 - Annotations and multi-server tool federationsΒΆ

Release 0.3.0 - Completed (100%)

Due: 08 Jul 2025 | Status: Closed Annotations and multi-server tool federations

✨ Completed Features (8)
  • βœ… #265 - Sample MCP Server - Go (fast-time-server)
  • βœ… #179 - Configurable Connection Retries for DB and Redis
  • βœ… #159 - Add auto activation of mcp-server, when it goes up back again
  • βœ… #154 - Export connection strings to various clients from UI and via API
  • βœ… #135 - Dynamic UI Picker for Tool, Resource, and Prompt Associations
  • βœ… #116 - Namespace Composite Key & UUIDs for Tool Identity
  • βœ… #100 - Add path parameter or replace value in input payload for a REST API?
  • βœ… #26 - Add dark mode toggle to Admin UI
πŸ› Completed Bugs (9)
  • βœ… #316 - Correctly create filelock_path: str = "tmp/gateway_service_leader.lock" in /tmp not current directory
  • βœ… #303 - Update manager.py and admin.js removed is_active field - replace with separate enabled and reachable fields from migration
  • βœ… #302 - Alembic configuration not packaged with pip wheel, pip install . && mcpgateway fails on db migration
  • βœ… #197 - Pytest run exposes warnings from outdated Pydantic patterns, deprecated stdlib functions
  • βœ… #189 - Close button for parameter input scheme does not work
  • βœ… #152 - not able to add Github Remote Server
  • βœ… #132 - SBOM Generation Failure
  • βœ… #131 - Documentation Generation fails due to error in Makefile's image target
  • βœ… #28 - Reactivating a gateway logs warning due to 'dict' object used as Pydantic model
πŸ“š Completed Documentation (1)
  • βœ… #18 - Add Developer Workstation Setup Guide for Mac (Intel/ARM), Linux, and Windows

Release 0.4.0 - Bugfixes, Security, Resilience (retry with exponential backoff), code quality and technical debtΒΆ

Release 0.4.0 - Completed (100%)

Due: 22 Jul 2025 | Status: Closed Bugfixes, Security, Resilience (retry with exponential backoff), code quality and technical debt

✨ Completed Features (9)
  • βœ… #456 - HTTPX Client with Smart Retry and Backoff Mechanism
  • βœ… #351 - CHORE: Checklist for complete End-to-End Validation Testing for All API Endpoints, UI and Data Validation
  • βœ… #340 - [Security]: Add input validation for main API endpoints (depends on #339 /admin API validation)
  • βœ… #339 - [Security]: Add input validation for /admin endpoints
  • βœ… #338 - [Security]: Eliminate all lint issues in web stack
  • βœ… #336 - [Security]: Implement output escaping for user data in UI
  • βœ… #233 - Contextual Hover-Help Tooltips in UI
  • βœ… #181 - Test MCP Server Connectivity Debugging Tool
  • βœ… #177 - Persistent Admin UI Filter State
πŸ› Completed Bugs (26)
  • βœ… #508 - "PATCH" in global tools while creating REST API integration through UI
  • βœ… #495 - test_admin_tool_name_conflict creates record in actual db
  • βœ… #476 - [Bug]:UI Does Not Show Error for Duplicate Server Name
  • βœ… #472 - auth_username and auth_password not getting set in GET /gateways/ API
  • βœ… #471 - _populate_auth not working
  • βœ… #424 - MCP Gateway Doesn't Detect HTTPS/TLS Context or respect X-Forwarded-Proto when using Federation
  • βœ… #419 - Remove unused lock_file_path from config.py (trips up bandit)
  • βœ… #416 - Achieve 100% bandit lint for version.py (remove git command from version.py, tests and UI and rely on semantic version only)
  • βœ… #412 - Replace assert statements with explicit error handling in translate.py and fix bandit lint issues
  • βœ… #396 - Test server URL does not work correctly
  • βœ… #387 - Respect GATEWAY_TOOL_NAME_SEPARATOR for gateway slug
  • βœ… #384 - Push image to GHCR incorrectly runs in PR
  • βœ… #382 - API incorrectly shows version, use semantic version from init
  • βœ… #378 - [Bug] Fix Unit Tests to Handle UI-Disabled Mode
  • βœ… #374 - Fix "metrics-loading" Element Not Found Console Warning
  • βœ… #371 - Fix Makefile to let you pick docker or podman and work consistently with the right image name
  • βœ… #369 - Fix Version Endpoint to Include Semantic Version (Not Just Git Revision)
  • βœ… #367 - Fix "Test Server Connectivity" Feature in Admin UI
  • βœ… #366 - Fix Dark Theme Visibility Issues in Admin UI
  • βœ… #361 - Prompt and RPC Endpoints Accept XSS Content Without Validation Error
  • βœ… #359 - Gateway validation accepts invalid transport types
  • βœ… #356 - Annotations not editable
  • βœ… #355 - Large empty space after line number in text boxes
  • βœ… #354 - Edit screens not populating fields
  • βœ… #352 - Resources - All data going into content
  • βœ… #213 - [Bug]:Can't use STREAMABLEHTTP
πŸ”’ Completed Security (1)
  • βœ… #552 - Add comprehensive input validation security test suite
πŸ”§ Completed Chores (13)
  • βœ… #558 - Ignore tests/security/test_input_validation.py in pre-commit for bidi-controls
  • βœ… #499 - Add nodejsscan security scanner
  • βœ… #467 - Achieve 100% docstring coverage (make interrogate) - currently at 96.3%
  • βœ… #433 - Fix all Makefile targets to work without pre-activated venv and check for OS depends
  • βœ… #421 - Achieve zero flagged Bandit issues
  • βœ… #415 - Additional Python Security Scanners
  • βœ… #399 - Create e2e acceptance test docs
  • βœ… #375 - Fix yamllint to Ignore node_modules Directory
  • βœ… #362 - Implement Docker HEALTHCHECK
  • βœ… #305 - Add vulture (dead code detect) and unimport (unused import detect) to Makefile and GitHub Actions
  • βœ… #279 - Implement security audit and vulnerability scanning with grype in Makefile and GitHub Actions
  • βœ… #249 - Achieve 60% doctest coverage and add Makefile and CI/CD targets for doctest and coverage
  • βœ… #210 - Raise pylint from 9.16/10 -> 10/10
πŸ“š Completed Documentation (3)
  • βœ… #522 - OpenAPI title is MCP_Gateway instead of MCP Gateway
  • βœ… #376 - Document Security Policy in GitHub Pages and Link Roadmap on Homepage
  • βœ… #46 - Add documentation for using mcp-cli with MCP Gateway

Release 0.5.0 - Enterprise Operability, Auth, Configuration & ObservabilityΒΆ

Release 0.5.0 - Completed (100%)

Due: 05 Aug 2025 | Status: Closed Enterprise Operability, Auth, Configuration & Observability

✨ Completed Features (4)
  • βœ… #663 - Add basic auth support for API Docs
  • βœ… #623 - Display default values from input_schema in test tool screen
  • βœ… #506 - New column for "MCP Server Name" in Global tools/resources etc
  • βœ… #392 - UI checkbox selection for servers, tools, and resources
πŸ› Completed Bugs (20)
  • βœ… #631 - Inconsistency in acceptable length of Tool Names for tools created via UI and programmatically
  • βœ… #630 - Gateway update fails silently in UI, backend throws ValidationInfo error
  • βœ… #622 - Test tool UI passes boolean inputs as on/off instead of true/false
  • βœ… #620 - Test tool UI passes array inputs as strings
  • βœ… #613 - Fix lint-web issues in admin.js
  • βœ… #610 - Edit tool in Admin UI sends invalid "STREAMABLE" value for Request Type
  • βœ… #603 - Unexpected error when registering a gateway with the same name.
  • βœ… #601 - APIs for gateways in admin and main do not mask auth values
  • βœ… #598 - Long input names in tool creation reflected back to user in error message
  • βœ… #591 - [Bug] Edit Prompt Fails When Template Field Is Empty
  • βœ… #584 - Can't register Github MCP Server in the MCP Registry
  • βœ… #579 - Edit tool update fail integration_type="REST"
  • βœ… #578 - Adding invalid gateway URL does not return an error immediately
  • βœ… #521 - Gateway ID returned as null by Gateway Create API
  • βœ… #507 - Makefile missing .PHONY declarations and other issues
  • βœ… #434 - Logs show"Invalid HTTP request received"
  • βœ… #430 - make serve doesn't check if I'm already running an instance (run-gunicorn.sh) letting me start the server multiple times
  • βœ… #423 - Redundant Conditional Expression in Content Validation
  • βœ… #373 - Clarify Difference Between "Reachable" and "Available" Status in Version Info
  • βœ… #357 - Improve consistency of displaying error messages
πŸ”’ Completed Security (1)
  • βœ… #425 - Make JWT Token Expiration Mandatory when REQUIRE_TOKEN_EXPIRATION=true (depends on #87)
πŸ”§ Completed Chores (9)
  • βœ… #638 - Add Makefile and GitHub Actions support for Snyk (test, code-test, container-test, helm charts)
  • βœ… #615 - Add pypi package linters: check-manifest pyroma and verify target to GitHub Actions
  • βœ… #590 - Integrate DevSkim static analysis tool via Makefile
  • βœ… #410 - Add make lint filename|dirname target to Makefile
  • βœ… #403 - Add time server (and configure it post-deploy) to docker-compose.yaml
  • βœ… #397 - Migrate run-gunicorn-v2.sh to run-gunicorn.sh and have a single file (improved startup script with configurable flags)
  • βœ… #390 - Add lint-web to CI/CD and add additional linters to Makefile (jshint jscpd markuplint)
  • βœ… #365 - Fix Database Migration Commands in Makefile
  • βœ… #363 - Improve Error Messages - Replace Raw Technical Errors with User-Friendly Messages

Release 0.6.0 - Security, Scale & Smart AutomationΒΆ

Release 0.6.0 - Completed (100%)

Due: 19 Aug 2025 | Status: Closed Security, Scale & Smart Automation

✨ Completed Features (30)
  • βœ… #773 - Add support for external plugins
  • βœ… #749 - MCP Reverse Proxy - Bridge Local Servers to Remote Gateways
  • βœ… #737 - Bulk Tool Import
  • βœ… #735 - Epic: Vendor Agnostic OpenTelemetry Observability Support
  • βœ… #727 - Phoenix Observability Integration plugin
  • βœ… #720 - Add CLI for authoring and packaging plugins
  • βœ… #708 - MCP Elicitation (v2025-06-18)
  • βœ… #705 - Option to completely remove Bearer token auth to MCP gateway
  • βœ… #690 - Make SSE Keepalive Events Configurable
  • βœ… #689 - Getting "Unknown SSE event: keepalive" when trying to use virtual servers
  • βœ… #682 - Add tool hooks (tool_pre_invoke / tool_post_invoke) to plugin system
  • βœ… #673 - Identify Next Steps for Plugin Development
  • βœ… #668 - Add Null Checks and Improve Error Handling in Frontend Form Handlers (admin.js)
  • βœ… #586 - Tag support with editing and validation across all APIs endpoints and UI (tags)
  • βœ… #540 - Configurable Well-Known URI Handler including security.txt and robots.txt
  • βœ… #533 - Add Additional Configurable Security Headers to APIs for Admin UI
  • βœ… #492 - Change UI ID field name to UUID
  • βœ… #404 - Add resources and prompts/prompt templates to time server
  • βœ… #380 - REST Endpoints for Go fast-time-server
  • βœ… #368 - Enhance Metrics Tab UI with Virtual Servers and Top 5 Performance Tables
  • βœ… #364 - Add Log File Support to MCP Gateway
  • βœ… #344 - Implement additional security headers and CORS configuration
  • βœ… #320 - Update Streamable HTTP to fully support Virtual Servers
  • βœ… #319 - AI Middleware Integration / Plugin Framework for extensible gateway capabilities
  • βœ… #186 - Granular Configuration Export & Import (via UI & API)
  • βœ… #185 - Portable Configuration Export & Import CLI (registry, virtual servers and prompts)
  • βœ… #138 - View & Export Logs from Admin UI
  • βœ… #137 - Track Creator & Timestamp Metadata for Servers, Tools, and Resources
  • βœ… #136 - Downloadable JSON Client Config Generator from Admin UI
  • βœ… #94 - Transport-Translation Bridge (mcpgateway.translate) any to any protocol conversion cli tool
πŸ› Completed Bugs (22)
  • βœ… #774 - Tools Annotations not working and need specificity for mentioning annotations
  • βœ… #765 - Illegal IP address string passed to inet_aton during discovery process
  • βœ… #753 - Tool invocation returns 'Invalid method' error after PR #746
  • βœ… #744 - Gateway fails to connect to services behind CDNs/load balancers due to DNS resolution
  • βœ… #741 - Enhance Server Creation/Editing UI for Prompt and Resource Association
  • βœ… #728 - Streamable HTTP Translation Feature: Connects but Fails to List Tools, Resources, or Support Tool Calls
  • βœ… #716 - Resources and Prompts not displaying in Admin Dashboard while Tools are visible
  • βœ… #696 - SSE Tool Invocation Fails After Integration Type Migration post PR #678
  • βœ… #694 - Enhanced Validation Missing in GatewayCreate
  • βœ… #685 - Multiple Fixes and improved security for HTTP Header Passthrough Feature
  • βœ… #666 - Vague/Unclear Error Message "Validation Failed" When Adding a REST Tool
  • βœ… #661 - Database migration runs during doctest execution
  • βœ… #649 - Duplicate Gateway Registration with Equivalent URLs Bypasses Uniqueness Check
  • βœ… #646 - MCP Server/Federated Gateway Registration is failing
  • βœ… #560 - Can't list tools when running inside of a docker
  • βœ… #557 - Cleanup tool descriptions to remove newlines and truncate text
  • βœ… #526 - Unable to add multiple headers when adding a gateway through UI
  • βœ… #520 - Resource mime-type is always stored as text/plain
  • βœ… #518 - Runtime error from Redis when multiple sessions exist
  • βœ… #481 - Intermittent test_resource_cache.py::test_expiration - AssertionError: assert 'bar' is None
  • βœ… #452 - integrationType should only support REST, not MCP (Remove Integration Type: MCP)
  • βœ… #405 - Fix the go time server annotation (it shows as destructive)
πŸ”’ Completed Security (3)
  • βœ… #540 - Configurable Well-Known URI Handler including security.txt and robots.txt
  • βœ… #533 - Add Additional Configurable Security Headers to APIs for Admin UI
  • βœ… #208 - HTTP Header Passthrough (forward headers to MCP server)
πŸ”§ Completed Chores (6)
  • βœ… #672 - Part 2: Replace Raw Errors with Friendly Messages in main.py
  • βœ… #317 - Script to add relative file path header to each file and verify top level docstring
  • βœ… #315 - Check SPDX headers Makefile and GitHub Actions target - ensure all files have File, Author(s) and SPDX headers
  • βœ… #280 - Add mutation testing with mutmut for test quality validation
  • βœ… #256 - Implement comprehensive fuzz testing automation and Makefile targets (hypothesis, atheris, schemathesis, RESTler)
  • βœ… #254 - Async Code Testing and Performance Profiling Makefile targets (flake8-async, cprofile, snakeviz, aiomonitor)

Release 0.7.0 - Multitenancy and RBAC (Private/Team/Global catalogs), Extended Connectivity, Core Observability & Starter Agents (OpenAI and A2A)ΒΆ

Release 0.7.0 - Nearly Complete (78%)

Due: 16 Sep 2025 | Status: Open Multitenancy and RBAC (Private/Team/Global catalogs), Extended Connectivity, Core Observability & Starter Agents (OpenAI and A2A)

✨ Completed Features (21)
  • βœ… #989 - [Feature Request]: Sample MCP Server - Python PowerPoint Editor (python-pptx)
  • βœ… #986 - Plugin Request: Implement Argument Normalizer Plugin (Native)
  • βœ… #928 - Migrate container base images from UBI9 to UBI10 and Python from 3.11 to 3.12
  • βœ… #925 - Add MySQL database support to MCP Gateway
  • βœ… #860 - [EPIC]: Complete Enterprise Multi-Tenancy System with Team-Based Resource Scoping
  • βœ… #859 - [Feature Request]: Authentication & Authorization - IBM Security Verify Enterprise SSO Integration (Depends on #220)
  • βœ… #846 - [Bug]: Editing server converts hex UUID to hyphenated UUID format, lacks error handling
  • βœ… #844 - [Bug]: Creating a new virtual server with a custom UUID, removes the "-" hyphens from the UUID field.
  • βœ… #831 - [Bug]: Newly added or deleted tools are not reflected in Global Tools tab after server reactivation
  • βœ… #822 - [Bug]: Incorrect _sleep_with_jitter Method Call
  • βœ… #820 - [Bug]: Unable to create a new server with custom UUID
  • βœ… #605 - [Feature Request]: Access to remote MCP Servers/Tools via OAuth on behalf of Users
  • βœ… #570 - [Feature Request]: Word wrap in codemirror
  • βœ… #544 - [SECURITY FEATURE]: Database-Backed User Authentication with Argon2id (replace BASIC auth)
  • βœ… #491 - [Feature Request]: UI Keyboard shortcuts
  • βœ… #426 - [SECURITY FEATURE]: Configurable Password and Secret Policy Engine
  • βœ… #282 - [SECURITY FEATURE]: Per-Virtual-Server API Keys with Scoped Access
  • βœ… #283 - [SECURITY FEATURE]: Role-Based Access Control (RBAC) - User/Team/Global Scopes for full multi-tenancy support
  • βœ… #278 - [Feature Request]: Authentication & Authorization - Google SSO Integration Tutorial (Depends on #220)
  • βœ… #220 - [AUTH FEATURE]: Authentication & Authorization - SSO + Identity-Provider Integration
  • βœ… #87 - [Feature Request]: Epic: Secure JWT Token Catalog with Per-User Expiry and Revocation
πŸ› Completed Bugs (5)
  • βœ… #958 - [Bug]: Incomplete Visibility Implementation
  • βœ… #955 - [Bug]: Team Selection implementation not tagging or loading added servers, tools, gateways
  • βœ… #942 - [Bug]: DateTime UTC Fixes Required
  • βœ… #587 - [Bug]: REST Tool giving error
  • βœ… #232 - [Bug]: Leaving Auth to None fails
πŸ“š Completed Documentation (3)
  • βœ… #323 - Add Developer Guide for using fast-time-server via JSON-RPC commands using curl or stdio
  • βœ… #19 - Add Developer Guide for using MCP via the CLI (curl commands, JSON-RPC)
  • βœ… #818 - [Docs]: Readme ghcr.io/ibm/mcp-context-forge:0.6.0 image still building
πŸ› Open Bugs (5)
  • #969 - Backend Multi-Tenancy Issues - Critical bugs and missing features
  • #967 - UI Gaps in Multi-Tenancy Support - Visibility fields missing for most resource types
  • #625 - [Bug]: Gateway unable to register gateway or call tools on MacOS
  • #464 - [Bug]: MCP Server "Active" status not getting updated under "Gateways/MCP Servers" when the MCP Server shutdown.
  • #448 - [Bug]: MCP server with custom base path "/api" instead of "mcp" or "sse" is not working
✨ Open Features (2)
  • #386 - [Feature Request]: Gateways/MCP Servers Page Refresh
  • #172 - [Feature Request]: Enable Auto Refresh and Reconnection for MCP Servers in Gateways
πŸ“š Open Documentation (1)
  • #834 - [Bug]: Existing tool configurations are not updating after changes to the MCP server configuration.

Release 0.8.0 - Enterprise Security & Policy GuardrailsΒΆ

Release 0.8.0 - In Progress (3%)

Due: 30 Sep 2025 | Status: Open Enterprise Security & Policy Guardrails

πŸ› Completed Bugs (2)
  • βœ… #949 - [Bug]: Tool invocation for an MCP server authorized by OAUTH2 fails
  • βœ… #948 - [Bug]:MCP OAUTH2 authenticate server is shown as offline after is added
πŸ—οΈ Completed Sample Servers (2)
  • βœ… #920 - Sample MCP Server - Go (calculator-server)
  • βœ… #900 - Sample MCP Server - Python (data-analysis-server)
πŸ”Œ Open Plugin Features (12)
  • #1005 - [Plugin] Create VirusTotal Checker Plugin using Plugin Framework
  • #1004 - [Plugin] Create URL Reputation Plugin using Plugin Framework
  • #1003 - [Plugin] Create Schema Guard Plugin using Plugin Framework
  • #1002 - [Plugin] Create Retry with Backoff Plugin using Plugin Framework
  • #1001 - [Plugin] Create Rate Limiter Plugin using Plugin Framework
  • #1000 - [Plugin] Create Output Length Guard Plugin using Plugin Framework
  • #999 - [Plugin] Create Markdown Cleaner Plugin using Plugin Framework
  • #998 - [Plugin] Create JSON Repair Plugin using Plugin Framework
  • #997 - [Plugin] Create HTML to Markdown Plugin using Plugin Framework
  • #996 - [Plugin] Create File Type Allowlist Plugin using Plugin Framework
  • #995 - [Plugin] Create Code Safety Linter Plugin using Plugin Framework
  • #994 - [Plugin] Create Cached Tool Result Plugin using Plugin Framework
πŸ”’ Open Security Features (44)
  • #979 - [Feature Request]: OAuth Dynamic Client Registration
  • #975 - Feature Request: Implement Session Persistence & Pooling for Improved Performance and State Continuity
  • #974 - [Feature Request]: Make users change default admin passwords and secrets for production deployments.
  • #964 - Support dynamic environment variable injection in mcpgateway.translate for STDIO MCP servers
  • #950 - Session Management & Tool Invocation with Gateway vs Direct MCP Client–Server
  • #946 - [Bug]: Alembic migrations fails in docker compose setup
  • #945 - [Bug]: Unique Constraint is not allowing Users to create servers/tools/resources/prompts with Names already used by another User
  • #941 - [Bug]: Access Token scoping not working
  • #939 - [Bug]: Missing Document links in SSO page for Team/RBAC management
  • #932 - [Feature Request]: Air-Gapped Environment Support
  • #931 - [Bug]: Helm install does not work when kubeVersion has vendor specific suffix
  • #926 - Bootstrap fails to assign platform_admin role due to foreign key constraint violation
  • #922 - [Bug]: In 0.6.0 Version, IFraming the admin UI is not working.
  • #810 - [Bug]: Ensure Test Cases Use Mock Database instead of Main DB
  • #806 - [CHORE]: Bulk Import – Missing error messages and registration feedback in UI
  • #782 - [Feature Request]: OAuth Enhancement following PR 768
  • #758 - Implement missing MCP protocol methods
  • #756 - [Feature Request]: REST Passthrough APIs with Pre/Post Plugins (JSONPath and filters)
  • #751 - [Feature] Implement MCP Evaluation Benchmarks Suite
  • #743 - [Feature Request]: Enhance Server Creation/Editing UI for Prompt and Resource Association
  • #738 - [Feature Request]: Configuration Database for Dynamic Settings Management
  • #732 - [Feature Request]: Enhance Handling of Long Tool Descriptions
  • #699 - [Feature]: Metrics Enhancement (export all data, capture all metrics, fix last used timestamps, UI improvements)
  • #683 - [Feature Request]: Debug headers and passthrough headers, e.g. X-Tenant-Id, X-Trace-Id, Authorization for time server (go) (draft)
  • #674 - [CHORE]: Automate release management process (draft)
  • #654 - [Feature Request]: Pre-register checks (mcp server scan) (draft)
  • #647 - Configurable caching for tools (draft)
  • #636 - [Feature]: Add PyInstaller support for building standalone binaries for all platforms
  • #595 - [CHORE] Investigate potential migration to UUID7 (draft)
  • #589 - [CHORE]: generating build provenance attestations for workflow artifacts (draft)
  • #574 - [CHORE]: Run pyupgrade to upgrade python syntax (draft)
  • #568 - [Feature Request]: Configurable client require TLS cert, and certificate setup for MCP Servers with private CA (draft)
  • #566 - [Feature Request]: Add support for limiting specific fields to user defined values (draft)
  • #565 - [Feature Request]: Docs for block/goose (draft)
  • #543 - [SECURITY FEATURE]: CSRF Token Protection System
  • #542 - [SECURITY FEATURE]: Helm Chart - Enterprise Secrets Management Integration (Vault)
  • #541 - [SECURITY FEATURE]: Enhanced Session Management for Admin UI
  • #539 - [SECURITY FEATURE]: Tool Execution Limits & Resource Controls
  • #538 - [SECURITY FEATURE] Content Size & Type Security Limits for Resources & Prompts
  • #537 - [SECURITY FEATURE]: Simple Endpoint Feature Flags (selectively enable or disable tools, resources, prompts, servers, gateways, roots)
  • #536 - [SECURITY FEATURE]: Generic IP-Based Access Control (allowlist)
  • #535 - [SECURITY FEATURE]: Audit Logging System
  • #534 - [SECURITY FEATURE]: Add Security Configuration Validation and Startup Checks
  • #505 - [Feature Request]: Add ENV token forwarding management per tool (draft)
πŸ› Open Bugs (14)
  • #959 - [Bug]: Unable to Re-add Team Member Due to Unique Constraint on (team_id, user_email)
  • #867 - [Bug]: update_gateway does not persist passthrough_headers field
  • #865 - [Bug]: Static assets return 404 when APP_ROOT_PATH is configured
  • #861 - [Bug]: Passthrough header parameters not persisted to database
  • #856 - [Bug]: Admin UI: Associated tools checkboxes on Virtual Servers edit not pre-populated due to ID vs name mismatch
  • #848 - [Feature Request]: Allow same prompt name when adding two different mcp server
  • #845 - [Bug]:2025-08-28 05:47:06,733 - mcpgateway.services.gateway_service - ERROR - FileLock health check failed: can't start new thread
  • #842 - [Bug]: 401 on privileged actions after cold restart despite valid login
  • #841 - [Bug]: For A2A Agent, tools are not getting listed under Global Tools
  • #840 - [Bug]: For A2A Agent test not working
  • #839 - [Bug]:Getting 401 un-authorized on Testing tools in "In-Cognito" mode.
  • #836 - [Bug]: Server Tags Not Propagated to Tools via /tools Endpoint
  • #835 - [Feature Request]: Adding Custom annotation for the tools
  • #383 - [Bug]: Remove migration step from Helm chart (now automated, no longer needed)
πŸ”Œ Additional Plugin Features (3)
  • #895 - [Plugin] Create Header Injector Plugin using Plugin Framework
  • #894 - [Plugin] Create Secrets Detection Plugin using Plugin Framework
  • #893 - [Plugin] Create JSON Schema Validator Plugin using Plugin Framework
πŸ—οΈ Open Sample Servers & Agents (15)
  • #921 - Sample MCP Server - Python (weather-data-server)
  • #919 - Sample MCP Server - Python (qr-code-server)
  • #912 - Sample Agent - IBM BeeAI Framework Integration (OpenAI & A2A Endpoints)
  • #911 - Create IBM Granite Embedding Models MCP Server
  • #910 - Create IBM Granite Geospatial Models MCP Server
  • #909 - Create IBM Granite Guardian Safety Models MCP Server
  • #908 - Create IBM Granite Time Series Models MCP Server
  • #907 - Create IBM Granite Speech Models MCP Server
  • #906 - Create IBM Granite Vision Models MCP Server
  • #905 - Create IBM Granite Language Models MCP Server
  • #904 - Sample MCP Server - TypeScript (real-time-collaboration-server)
  • #903 - Sample MCP Server - TypeScript (web-automation-server)
  • #902 - Sample MCP Server - Rust (performance-benchmark-server)
  • #901 - Sample MCP Server - Rust (crypto-tools-server)
  • #899 - Sample MCP Server - Python (ml-inference-server)
πŸ–₯️ Open Sample Servers (3)
  • #898 - Sample MCP Server - Go (system-monitor-server)
  • #897 - Sample MCP Server - Go (database-query-server)
  • #896 - Add Prompt Authoring Tools Category to MCP Eval Server
πŸ“š Open Documentation (30)
  • #918 - Document Javadocs.dev MCP Server integration with MCP Gateway
  • #917 - Document Hugging Face MCP Server integration with MCP Gateway
  • #916 - Document monday.com MCP Server integration with MCP Gateway
  • #915 - Document GitHub MCP Server integration with MCP Gateway
  • #914 - Document Box MCP Server integration with MCP Gateway
  • #913 - Document Atlassian MCP Server integration with MCP Gateway
  • #892 - Update and test IBM Cloud deployment documentation and automation
  • #891 - Document BeeAI Framework integration with MCP Gateway
  • #890 - Document Langflow as MCP Server integration with MCP Gateway
  • #889 - Document MCP Composer integration with MCP Gateway
  • #888 - Document Docling MCP Server integration with MCP Gateway
  • #887 - Document DataStax Astra DB MCP Server integration with MCP Gateway
  • #886 - Document Vault Radar MCP Server integration with MCP Gateway
  • #885 - Document Terraform MCP Server integration with MCP Gateway
  • #884 - Document WxMCPServer (webMethods Hybrid Integration) integration with MCP Gateway
  • #883 - Document IBM API Connect for GraphQL MCP integration with MCP Gateway
  • #882 - Document IBM Storage Insights MCP Server integration with MCP Gateway
  • #881 - Document IBM Instana MCP Server integration with MCP Gateway
  • #880 - Document IBM Cloud VPC MCP Server integration with MCP Gateway
  • #879 - Document IBM Cloud Code Engine MCP Server integration with MCP Gateway
  • #878 - Document IBM Cloud MCP Server integration with MCP Gateway
  • #877 - Document IBM watsonx.data Document Retrieval MCP Server integration with MCP Gateway
  • #876 - Document IBM ODM MCP Server integration with MCP Gateway
  • #875 - Document IBM MQ Server MCP integration with MCP Gateway
  • #874 - Document IBM Decision Intelligence MCP Server integration with MCP Gateway
  • #873 - Document watsonx Orchestrate integration with MCP Gateway
  • #872 - Document watsonx.ai integration with MCP Gateway
  • #871 - Document Langflow integration with MCP Gateway
  • #503 - Tutorial: OpenWebUI with Ollama, LiteLLM, MCPO, and MCP Gateway Deployment Guide (Draft)
  • #277 - [Feature Request]: Authentication & Authorization - GitHub SSO Integration Tutorial (Depends on #220)

177 Total Issues (4 completed, 173 open)

This release contains a comprehensive set of enterprise security features, plugins, sample servers, and documentation. Due to the large scope, issues are grouped by category for better organization.

Issue Breakdown: - πŸ”Œ 15 Plugin Features (12 main + 3 additional) - πŸ”’ 44 Security Features - πŸ› 16 Bugs (2 completed + 14 open) - πŸ—οΈ 20 Sample Servers & Agents - πŸ“š 30 Documentation Issues - πŸ”§ Various chores and infrastructure improvements

Release 0.9.0 - Interoperability, marketplaces & advanced connectivityΒΆ

Release 0.9.0 - In Progress (8%)

Due: 14 Oct 2025 | Status: Open Interoperability, marketplaces & advanced connectivity

✨ Completed Features (2)
  • βœ… #298 - A2A Initial Support - Add A2A Servers as Tools
  • βœ… #243 - a2a compatibility?
✨ Open Features (13)
  • #546 - Protocol Version Negotiation & Backward Compatibility
  • #545 - Hot-Reload Configuration Without Restart (move from .env to configuration database table) (draft)
  • #295 - MCP Server Marketplace
  • #294 - Automated MCP Server Testing and Certification
  • #288 - MariaDB Support Testing, Documentation, CI/CD (alongside PostgreSQL & SQLite)
  • #276 - Terraform Module – "mcp-gateway-ibm-cloud" supporting IKS, ROKS, Code Engine targets
  • #275 - Terraform Module - "mcp-gateway-gcp" supporting GKE and Cloud Run
  • #274 - Terraform Module - "mcp-gateway-azure" supporting AKS and ACA
  • #273 - Terraform Module - "mcp-gateway-aws" supporting both EKS and ECS Fargate targets
  • #272 - Observability - Pre-built Grafana Dashboards & Loki Log Export
  • #270 - MCP Server – Go Implementation ("libreoffice-server")
  • #269 - MCP Server - Go Implementation (LaTeX Service)
  • #268 - Sample MCP Server - Haskell Implementation ("pandoc-server") (html, docx, pptx, latex conversion)
✨ Open Features (8)
  • #267 - Sample MCP Server – Java Implementation ("plantuml-server")
  • #266 - Sample MCP Server - Rust Implementation ("filesystem-server")
  • #209 - Anthropic Desktop Extensions DTX directory/marketplace
  • #182 - Semantic tool auto-filtering
  • #130 - Dynamic LLM-Powered Tool Generation via Prompt
  • #123 - Dynamic Server Catalog via Rule, Regexp, Tags - or LLM-Based Selection
  • #114 - Connect to Dockerized MCP Servers via STDIO
  • #80 - Publish a multi-architecture container (including ARM64) support
πŸ”§ Open Chores (1)
  • #290 - Enhance Gateway Tuning Guide with PostgreSQL Deep-Dive

Release 1.0.0 - General Availability & Release Candidate Hardening - stable & auditedΒΆ

Release 1.0.0 - In Progress (0%)

Due: 11 Nov 2025 | Status: Open General Availability & Release Candidate Hardening - stable & audited

πŸ“š Open Documentation (2)
  • #264 - GA Documentation Review & End-to-End Validation Audit
  • #22 - Add BeeAI Framework client integration (Python & TypeScript)

Release 1.1.0 - Post-GA Testing, Bugfixing, Documentation, Performance and ScaleΒΆ

Release 1.1.0 - In Progress (0%)

Due: 25 Nov 2025 | Status: Open Post-GA Testing, Bugfixing, Documentation, Performance and Scale

✨ Open Features (2)
  • #707 - Customizable Admin Panel
  • #293 - Intelligent Load Balancing for Redundant MCP Servers

Release 1.2.0 - Catalog Enhancements, Ratings, experience and UIΒΆ

Release 1.2.0 - In Progress (0%)

Due: 09 Dec 2025 | Status: Open Catalog Enhancements, Ratings, experience and UI

✨ Open Features (2)
  • #547 - Built-in MCP Server Health Dashboard
  • #296 - MCP Server Rating and Review System

Release 1.3.0 - Catalog Improvements, A2A Improvements, MCP Standard Review and Sync, Technical DebtΒΆ

Release 1.3.0 - In Progress (0%)

Due: 23 Dec 2025 | Status: Open Catalog Improvements, A2A Improvements, MCP Standard Review and Sync, Technical Debt

✨ Open Features (1)
  • #299 - A2A Ecosystem Integration & Marketplace (Extends A2A support)

Unassigned IssuesΒΆ

Issues Without Release Assignment

The following issues are not assigned to any specific release (open or completed):

✨ Features (2 completed, 1 open)
  • βœ… #752 - [Feature] Create mcp-eval-server: MCP Server for Agent Performance Evaluation
  • βœ… #679 - [Feature] Add enabled field to plugins/config.yaml
  • #978 - Support Content-Type: application/x-www-form-urlencoded
πŸ› Bugs (12 completed, 0 open)
  • βœ… #962 - Bridge stdio MCP with ENV variable requirement
  • βœ… #954 - [Bug]: Metadata fields not populated in view
  • βœ… #952 - [Bug]: Tool's long descriptions make Create MCP Server to fail
  • βœ… #943 - [Bug]: Team/RBAC feature not working as expected
  • βœ… #857 - [Bug]: Prompts, Servers, Tools, Resources - Filtering via tags from swagger UI - not working
  • βœ… #855 - [Bug]: Tool calls are failing due to 20s timeout
  • βœ… #804 - [Bug]: JSON-RPC methods misrouted as tools in MCP Gateway v0.5.0 (Tool not found: notifications/initialized / tools/call)
  • βœ… #803 - [Bug]: streamable_http - ERROR - Error in message router - ClosedResourceError
  • βœ… #779 - [Bug]: Refactor and Optimize MCP Gateway Wrapper for Performance and Maintainability
  • βœ… #740 - [Bug]:"REST" Add Tool and All Integration Edit Tool Not Working After PR #731
  • βœ… #715 - [Bug]:Tool Edit Screen Issues – Field Mismatch & MCP Tool Validation Error
  • βœ… #700 - [Bug]: Move async_testing to tests/async
❓ Completed Questions (2)
  • βœ… #510 - Create users - User management & RBAC
  • βœ… #509 - Enterprise LDAP Integration

LegendΒΆ

  • ✨ Feature Request - New functionality or enhancement
  • πŸ› Bug - Issues that need to be fixed
  • πŸ”’ Security - Security features and improvements
  • ⚑ Performance - Performance optimizations
  • πŸ”§ Chore - Maintenance, tooling, or infrastructure work
  • πŸ“š Documentation - Documentation improvements or additions
  • ❓ Question - User questions (typically closed after resolution)
  • βœ… Completed - Issue has been resolved and closed

Contributing

Want to contribute to any of these features? Check out the individual GitHub issues for more details and discussion!