[dependencies]: Bump @modelcontextprotocol/inspector from 0.14.1 to 0.15.0

[dependabot]

Bumps @modelcontextprotocol/inspector from 0.14.1 to 0.15.0.

Release notes

Sourced from @​modelcontextprotocol/inspector's releases.

0.15.0

What's Changed

• Re-enable inspector auto-open & reloads post security fixes by @​felixweinberger in modelcontextprotocol/inspector#513
• docs: Update project organization in CLAUDE.md by @​richardkmichael in modelcontextprotocol/inspector#545
• [auth] Add resource compatibility to debugger (RFC 8707) by @​pcarleton in modelcontextprotocol/inspector#526
• Add a Playwright e2e test by @​msabramo in modelcontextprotocol/inspector#460
• Feat/cli http by @​ryanjclark in modelcontextprotocol/inspector#479
• chore: Update radix-ui components and icons by @​richardkmichael in modelcontextprotocol/inspector#557
• Bump version to 0.15.0 and bump sdk to 0.13.1 by @​olaservo in modelcontextprotocol/inspector#560

New Contributors

• @​felixweinberger made their first contribution in modelcontextprotocol/inspector#513
• @​QuantGeekDev made their first contribution in modelcontextprotocol/inspector#532
• @​richardkmichael made their first contribution in modelcontextprotocol/inspector#545
• @​ryanjclark made their first contribution in modelcontextprotocol/inspector#479

Full Changelog: modelcontextprotocol/inspector@0.14.3...0.15.0

0.14.3

What's Changed

• Containerising inspector by @​aaronpowell in modelcontextprotocol/inspector#257
• feat: add version management scripts and CI check by @​jerome3o-anthropic in modelcontextprotocol/inspector#511
• Bump version to 0.14.3 by @​cliffhall in modelcontextprotocol/inspector#522

New Contributors

• @​aaronpowell made their first contribution in modelcontextprotocol/inspector#257

Full Changelog: modelcontextprotocol/inspector@0.14.2...0.14.3

0.14.2

Fixing up a bug with the new proxy auth

What's Changed

• fix: use X-MCP-Proxy-Auth header for proxy authentication by @​jerome3o-anthropic in modelcontextprotocol/inspector#509
• Bumped all versions to 0.14.2 by @​jerome3o-anthropic in modelcontextprotocol/inspector#510

Full Changelog: modelcontextprotocol/inspector@0.14.1...0.14.2

Commits

• 5e92e88 Merge pull request #560 from olaservo/bump-version-15-0-0
• d49a5f6 Bump sdk
• 2ca82b5 Bump version to 0.15.0
• d29d707 Merge pull request #557 from richardkmichael/update-radix-and-icons
• f2aaa8d Merge pull request #479 from ryanjclark/feat/cli-http
• 36e053a Adjust e2e test configuration
• 14a9b8f feat: formatting
• 73bb000 Update lucide-react
• 0bef6f7 feat: add tests for http transport
• e0fe311 Update @​radix-ui/react-select
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ✅ 0 package(s) with unknown licenses.
• ⚠️ 1 packages with OpenSSF Scorecard issues.

See the Details below.

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
npm/@floating-ui/core	1.7.2	Unknown	Unknown
npm/@floating-ui/dom	1.7.2	Unknown	Unknown
npm/@floating-ui/react-dom	2.1.4	Unknown	Unknown
npm/@floating-ui/utils	0.2.10	Unknown	Unknown
npm/@modelcontextprotocol/inspector	0.15.0	Unknown	Unknown
npm/@modelcontextprotocol/inspector-cli	0.15.0	Unknown	Unknown
npm/@modelcontextprotocol/inspector-client	0.15.0	Unknown	Unknown
npm/@modelcontextprotocol/inspector-server	0.15.0	Unknown	Unknown
npm/lucide-react	0.523.0	⚠️ 2.9	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 8 Found 25/30 approved changesets -- score normalized to 8 Packaging ⚠️ -1 packaging workflow not detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Security-Policy ⚠️ 0 security policy file not detected Dangerous-Workflow ⚠️ 0 dangerous workflow patterns detected License 🟢 10 license file detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Fuzzing ⚠️ 0 project is not fuzzed Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 0 30 existing vulnerabilities detected
npm/tailwindcss	4.1.11	🟢 5.9	Details Check Score Reason Maintained 🟢 10 30 commit(s) and 8 issue activity found in the last 90 days -- score normalized to 10 Code-Review 🟢 7 Found 13/17 approved changesets -- score normalized to 7 Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Binary-Artifacts 🟢 10 no binaries found in the repo Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Security-Policy ⚠️ 0 security policy file not detected License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Fuzzing 🟢 10 project is fuzzed Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. Packaging 🟢 10 packaging workflow detected SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Vulnerabilities ⚠️ 0 15 existing vulnerabilities detected
npm/ws	8.18.3	🟢 6.1	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review ⚠️ 2 Found 6/30 approved changesets -- score normalized to 2 Maintained 🟢 10 8 commit(s) and 10 issue activity found in the last 90 days -- score normalized to 10 Packaging ⚠️ -1 packaging workflow not detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 10 GitHub workflow tokens follow principle of least privilege Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Vulnerabilities 🟢 10 0 existing vulnerabilities detected License 🟢 10 license file detected Fuzzing ⚠️ 0 project is not fuzzed Branch-Protection ⚠️ 0 branch protection not enabled on development/release branches Signed-Releases ⚠️ -1 no releases found SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
npm/@modelcontextprotocol/inspector	^0.15.0	Unknown	Unknown

Scanned Files

• package-lock.json
• package.json