Merge pull request modelcontextprotocol#924 from jonathanhefner/fix-versioned-urls

Fix versioned URLs

Author: localden

docs/clients.mdx

@@ -367,14 +367,17 @@ The Claude desktop application provides comprehensive support for MCP, enabling
 - Displays configured MCP servers along with their tools, resources, and any error logs
 
 ### CodeGPT
+
 [CodeGPT](https://codegpt.co) is a popular VS Code and Jetbrains extension that brings AI-powered coding assistance to your editor. It supports integration with MCP servers for tools, allowing users to leverage external AI capabilities directly within their development workflow.
 
 **Key features:**
+
 - Use MCP tools from any configured MCP server
 - Seamless integration with VS Code and Jetbrains UI
 - Supports multiple LLM providers and custom endpoints
 
 **Learn more:**
+
 - [CodeGPT Documentation](https://docs.codegpt.co/)
 
 ### Continue
@@ -782,6 +785,7 @@ MooPoint is a web-based AI chat platform built for developers and advanced users
 [Shortwave](https://www.shortwave.com) is an AI-powered email client that supports MCP tools to enhance email productivity and workflow automation.
 
 **Key features:**
+
 - MCP tool integration for enhanced email workflows
 - Rich UI for adding, managing and interacting with a wide range of MCP servers
 - Support for both remote (Streamable HTTP and SSE) and local (Stdio) MCP servers
@@ -869,7 +873,7 @@ MooPoint is a web-based AI chat platform built for developers and advanced users
 **Key features:**
 
 - Support for MCP tools
-- Extend agents with MCP servers 
+- Extend agents with MCP servers
 - MCP servers hosting: serverless hosting and authentication support
 
 ### TheiaAI/TheiaIDE

docs/specification/2025-06-18/basic/authorization.mdx

@@ -298,7 +298,7 @@ audiences **when the Authorization Server supports the capability**. To enable c
 - MCP clients **MUST** include the `resource` parameter in authorization and token requests as specified in the [Resource Parameter Implementation](#resource-parameter-implementation) section
 - MCP servers **MUST** validate that tokens presented to them were specifically issued for their use
 
-The [Security Best Practices document](/specification/draft/basic/security_best_practices#token-passthrough)
+The [Security Best Practices document](/specification/2025-06-18/basic/security_best_practices#token-passthrough)
 outlines why token audience validation is crucial and why token passthrough is explicitly forbidden.
 
 ### Token Theft

docs/specification/draft/basic/authorization.mdx

@@ -359,7 +359,7 @@ An attacker can gain unauthorized access or otherwise compromise a MCP server if
 This vulnerability has two critical dimensions:
 
 1. **Audience validation failures.** When an MCP server doesn't verify that tokens were specifically intended for it (for example, via the audience claim, as mentioned in [RFC9068](https://www.rfc-editor.org/rfc/rfc9068.html)), it may accept tokens originally issued for other services. This breaks a fundamental OAuth security boundary, allowing attackers to reuse legitimate tokens across different services than intended.
-2. **Token passthrough.** If the MCP server not only accepts tokens with incorrect audiences but also forwards these unmodified tokens to downstream services, it can potentially cause the ["confused deputy" problem](#confused-deputy-problem), where the downstream API may incorrectly trust the token as if it came from the MCP server or assume the token was validated by the upstream API. See the [Token Passthrough section](/specification/2025-06-18/basic/security_best_practices#token-passthrough) of the Security Best Practices guide for additional details.
+2. **Token passthrough.** If the MCP server not only accepts tokens with incorrect audiences but also forwards these unmodified tokens to downstream services, it can potentially cause the ["confused deputy" problem](#confused-deputy-problem), where the downstream API may incorrectly trust the token as if it came from the MCP server or assume the token was validated by the upstream API. See the [Token Passthrough section](/specification/draft/basic/security_best_practices#token-passthrough) of the Security Best Practices guide for additional details.
 
 MCP servers **MUST** validate access tokens before processing the request, ensuring the access token is issued specifically for the MCP server, and take all necessary steps to ensure no data is returned to unauthorized parties.