Releases for MCP Tools

New Submodule: Remote Media (community contribution by guillaumeg, #3577187)

New mcp_tools_remote_media submodule that fetches images from remote URLs and creates managed Drupal media entities.

Credit to Guillaume Gérard for finding these issues and opening Merge Request.

- ApiKeyManagerTest failures on Drupal 11: The beta3 frozen REQUEST_TIME fix changed DrupalClock::now() to use
getCurrentTime(), but the test only mocked getRequestTime(), causing 4 failures on Drupal 11
- CI dependency resolution: Consolidated composer require steps with -W flag to resolve transitive conflicts between
mcp/sdk and Drupal core packages

- Dependency updates: mcp-error-codes ^1.2, mcp-schema-builder ^1.1, mcp-tool-gateway ^1.1
- DefaultToolErrorHandler refactored to use McpError fluent builder for cleaner error responses
- ErrorCode standardization: All module services now use ErrorCode::* constants instead of hardcoded strings
- Batch tool fix: List schema now accepts complex objects (https://www.drupal.org/project/issues/mcp_tools/3572001, reported

MCP Tools 1.0.0-alpha26 - External Packages & Service Interfaces

This release extracts reusable MCP infrastructure into standalone Composer packages and improves service architecture with proper interfaces.

NEW FEATURES

- New standalone PHP packages for the MCP ecosystem:
- code-wheel/mcp-error-codes (v1.1): Standardized error codes with helper methods
- code-wheel/mcp-events (v2.1): Tool execution lifecycle events with JsonSerializable support

- New standalone package: code-wheel/mcp-http-security on Packagist
- API key management with SHA-256 hashing
- IP allowlisting with CIDR support
- Origin/hostname allowlisting
- PSR-15 SecurityMiddleware
- mcp_tools_remote now delegates to the extracted package
- Added Drupal adapters: DrupalStateStorage, DrupalClock
- Restored 4 unit tests with proper fixes
- Fixed ContentTypeService DI architecture

Three new configuration presets for quick setup:
- **Development**: Full access, no rate limiting - ideal for local development
- **Staging**: Config-only mode with rate limiting and audit logging
- **Production**: Read-only mode with strict limits and full audit trail

- Add optional Origin/Host allowlist for remote HTTP (allowed_origins) as DNS-rebinding defense-in-depth.
- Expand HTTP E2E to verify Origin allowlist and Origin-vs-Host precedence.
- Add a JS MCP SDK STDIO smoke test in CI to catch strict-client/schema regressions early.

- Audit logs now include correlation ID, transport, client identifier, and scopes.
- Added drush mcp-tools:remote-setup to create a dedicated remote execution user/role and set mcp_tools_remote.settings.uid.
- Expanded mcp_config_preview operations (roles/permissions + delete previews for content types/fields).
- Status page now shows remote endpoint status and warns on risky remote settings.
- CI/E2E improvements: schema conversion validation for all tools; STDIO/HTTP E2E made more robust.

- Default connection scopes are now read-only by default (access.default_scopes: [read]).
- Admin-scope tools (recipes/templates/config export) are now gated as ToolOperation::Trigger (require admin scope at access time).
- Remote HTTP: optional IP allowlist (mcp_tools_remote.settings.allowed_ips), API key TTL via drush mcp-tools:remote-key-create --ttl=..., and UI validation to avoid running remote as uid 1.
- Rate limiting: X-MCP-Client-Id is ignored by default; opt-in via rate_limiting.trust_client_id_header.