Merge branch 'main' into fix-rfc-9728-typo

localden · web-flow · commit 15806590b34c · 2025-10-21T13:30:36.000-07:00
diff --git a/blog/content/posts/client_registration/index.md b/blog/content/posts/client_registration/index.md
@@ -58,9 +58,9 @@ For example, a malicious client could claim to be `Claude Desktop` on the consen
 
 ## Improving Client Registration in MCP
 
-For MCP users, a common pattern is to connect to an MCP server by using its URL directly in a MCP client.
+For MCP users, a common pattern is to connect to an MCP server by using its URL directly in an MCP client.
 
-This goes against the typical OAuth authorization pattern because the user is selecting the resource server to connect to rather than the client developer. This problem is compounded by the fact that there is an unbounded number of authorization servers that a MCP server may use, meaning that clients need to be able to complete the authorization flow regardless of the provider used.
+This goes against the typical OAuth authorization pattern because the user is selecting the resource server to connect to rather than the client developer. This problem is compounded by the fact that there is an unbounded number of authorization servers that an MCP server may use, meaning that clients need to be able to complete the authorization flow regardless of the provider used.
 
 Some client developers have implemented pre-registration with a select few authorization servers. In this scenario, the client doesn't need to rely on DCR when it detects an authorization server it knows. However, this is a solution that doesn't scale given the breadth of the MCP ecosystem - it's impossible to have every client be registered with every authorization server there is.
 To mitigate this challenge, we set out to outline some of the goals that we wanted to achieve with improving the client registration experience:
diff --git a/docs/clients.mdx b/docs/clients.mdx
@@ -61,6 +61,7 @@ This page provides an overview of applications that support the Model Context Pr
 | [LibreChat][LibreChat]                           | ❌          | ❌        | ✅      | ❓                     | ❌         | ❌    | ❓            |
 | [LM Studio][LM Studio]                           | ❌          | ❌        | ✅      | ❓                     | ❌         | ❌    | ❓            |
 | [Lutra][Lutra]                                   | ✅          | ✅        | ✅      | ❓                     | ❌         | ❌    | ❓            |
+| [MCP Bundler for MacOS][mcp-bundler]                                   | ✅          | ✅        | ✅      | ❌                     | ❌         | ❌    | ❌            |
 | [mcp-agent][mcp-agent]                           | ✅          | ✅        | ✅      | ❓                     | ⚠️         | ✅    | ✅            |
 | [mcp-client-chatbot][mcp-client-chatbot]         | ❌          | ❌        | ✅      | ❌                     | ❌         | ❌    | ❓            |
 | [MCPJam][MCPJam]                                 | ✅          | ✅        | ✅      | ❓                     | ❌         | ❌    | ✅            |
@@ -160,6 +161,7 @@ This page provides an overview of applications that support the Model Context Pr
 [LibreChat]: https://github.com/danny-avila/LibreChat
 [LM Studio]: https://lmstudio.ai
 [Lutra]: https://lutra.ai
+[mcp-bundler]: https://mcp-bundler.maketry.xyz
 [mcp-agent]: https://github.com/lastmile-ai/mcp-agent
 [mcp-client-chatbot]: https://github.com/cgoinglove/mcp-client-chatbot
 [MCPJam]: https://github.com/MCPJam/inspector
@@ -778,6 +780,22 @@ Langflow is an open-source visual builder that lets developers rapidly prototype
 
 - [Lutra AI agent explained](https://www.youtube.com/watch?v=W5ZpN0cMY70)
 
+### MCP Bundler for MacOS
+
+[MCP Bundler](https://mcp-bundler.maketry.xyz) is perfect local proxy for your MCP workflow. The app centralizes all your MCP servers — toggle, group, turn off capabilities instantly. Switch bundles on the fly inside the MCP Bundler.
+
+**Key features:**
+
+- Unified Control Panel: Manage all your MCP servers — both Local STDIO and Remote HTTP/SSE — from one clear macOS window. Start, stop, or edit them instantly without touching configs.
+- One Click, All Connected: Launch or disable entire MCP setups with one toggle. Switch bundles per project or workspace and keep your AI tools synced automatically.
+- Per-Tool Control: Enable or hide individual tools inside each server. Keep your bundles clean, lightweight, and tailored for every AI workflow.
+- Instant Health & Logs: Real-time health indicators and request logs show exactly what’s running. Diagnose and fix connection issues without leaving the app.
+- Auto-Generate MCP Config: Copy a ready-made JSON snippet for any client in seconds. No manual wiring — connect your Bundler as a single MCP endpoint.
+
+**Learn more:**
+
+- [MCP Bundler in action](https://www.youtube.com/watch?v=CEHVSShw_NU)
+
 ### mcp-agent
 
 [mcp-agent] is a simple, composable framework to build agents using Model Context Protocol.
@@ -946,7 +964,7 @@ MooPoint is a web-based AI chat platform built for developers and advanced users
 
 ### Needle
 
-[Needle](https://needle.app) is a RAG worflow platform that also works as an MCP client, letting you connect and use MCP servers in seconds.
+[Needle](https://needle.app) is a RAG workflow platform that also works as an MCP client, letting you connect and use MCP servers in seconds.
 
 **Key features:**
 
diff --git a/docs/community/sep-guidelines.mdx b/docs/community/sep-guidelines.mdx
@@ -44,7 +44,7 @@ Each SEP must have an **SEP author** -- someone who writes the SEP using the sty
 
 SEPs should be submitted as a GitHub Issue in the [specification repository](https://github.com/modelcontextprotocol/modelcontextprotocol). The standard SEP workflow is:
 
-1. You, the SEP author, create a [well-formatted](#sep-format) GitHub Issue with the `SEP` and `proposal` tags. The SEP number is the same as the GitHub Issue number, the two can be used interchangably.
+1. You, the SEP author, create a [well-formatted](#sep-format) GitHub Issue with the `SEP` and `proposal` tags. The SEP number is the same as the GitHub Issue number, the two can be used interchangeably.
 2. Find a Core Maintainer or Maintainer to sponsor your proposal. Core Maintainers and Maintainers will regularly go over the list of open proposals to determine which proposals to sponsor. You can tag relevant maintainers from [the maintainer list](https://github.com/modelcontextprotocol/modelcontextprotocol/blob/main/MAINTAINERS.md) in your proposal.
 3. Once a sponsor is found, the GitHub Issue is assigned to the sponsor. The sponsor will add the `draft` tag, ensure the SEP number is in the title, and assign a milestone.
 4. The sponsor will informally review the proposal and may request changes based on community feedback. When ready for formal review, the sponsor will add the `in-review` tag.
diff --git a/docs/docs/develop/build-client.mdx b/docs/docs/develop/build-client.mdx
@@ -77,7 +77,7 @@ You'll need an Anthropic API key from the [Anthropic Console](https://console.an
 Create a `.env` file to store it:
 
 ```bash
-echo "ANTHROPIC_API_KEY=<your key here>" > .env
+echo "ANTHROPIC_API_KEY=your-api-key-goes-here" > .env
 ```
 
 Add `.env` to your `.gitignore`:
diff --git a/docs/docs/tutorials/security/authorization.mdx b/docs/docs/tutorials/security/authorization.mdx
@@ -97,7 +97,7 @@ If the registration succeeds, the authorization server will return a JSON blob w
 <Tip>
 **No DCR or Pre-Registration**
 
-In case a MCP client connects to a MCP server that doesn't use an authorization server that supports DCR and the client is not pre-registered with said authorization server, it's the responsibility of the client developer to provide an affordance for the end-user to enter client information manually.
+In case an MCP client connects to an MCP server that doesn't use an authorization server that supports DCR and the client is not pre-registered with said authorization server, it's the responsibility of the client developer to provide an affordance for the end-user to enter client information manually.
 
 </Tip>
 
diff --git a/docs/specification/draft/basic/index.mdx b/docs/specification/draft/basic/index.mdx
@@ -184,7 +184,7 @@ Consumers of icon metadata **MUST** take appropriate security precautions when h
 - Fetch icons without credentials. Do not send cookies, `Authorization` headers, or client credentials.
 - Verify that icon URIs are from the same origin as the server. This minimizes the risk of exposing data or tracking information to third-parties.
 - Exercise caution when fetching and rendering icons as the payload **MAY** contain executable content (e.g., SVG with [embedded JavaScript](https://www.w3.org/TR/SVG11/script.html) or [extended capabilities](https://www.w3.org/TR/SVG11/extend.html)).
-  - Consumers **MAY** choose to disallow specific file types or otherwize sanitize icon files before rendering.
+  - Consumers **MAY** choose to disallow specific file types or otherwise sanitize icon files before rendering.
 - Validate MIME types and file contents before rendering. Treat the MIME type information as advisory. Detect content type via magic bytes; reject on mismatch or unknown types.
   - Maintain a strict allowlist of image types.
 
diff --git a/docs/specification/draft/basic/security_best_practices.mdx b/docs/specification/draft/basic/security_best_practices.mdx
@@ -363,7 +363,7 @@ Local MCP servers with inadequate restrictions or from untrusted sources introdu
 
 #### Mitigation
 
-If a MCP client supports one-click local MCP server configuration, it **MUST** implement proper consent mechanisms prior to executing commands.
+If an MCP client supports one-click local MCP server configuration, it **MUST** implement proper consent mechanisms prior to executing commands.
 
 **Pre-Configuration Consent**
 
