Update ToolHive reference docs for v0.1.8 (#56)

github-actions[bot] · web-flow · commit 3955f2286636 · 2025-07-15T12:03:59.000-04:00
Co-authored-by: github-actions[bot] &lt;41898282+github-actions[bot]@users.noreply.github.com&gt;
diff --git a/docs/toolhive/reference/cli/thv_client.md b/docs/toolhive/reference/cli/thv_client.md
@@ -30,8 +30,9 @@ The client command provides subcommands to manage MCP client integrations.
 ### SEE ALSO
 
 * [thv](thv.md)	 - ToolHive (thv) is a lightweight, secure, and fast manager for MCP servers
-* [thv client status](thv_client_status.md)	 - Show status of all supported MCP clients
-* [thv client setup](thv_client_setup.md)	 - Interactively setup and register installed clients
 * [thv client list-registered](thv_client_list-registered.md)	 - List all registered MCP clients
 * [thv client register](thv_client_register.md)	 - Register a client for MCP server configuration
 * [thv client remove](thv_client_remove.md)	 - Remove a client from MCP server configuration
+* [thv client setup](thv_client_setup.md)	 - Interactively setup and register installed clients
+* [thv client status](thv_client_status.md)	 - Show status of all supported MCP clients
+
diff --git a/docs/toolhive/reference/cli/thv_client_list-registered.md b/docs/toolhive/reference/cli/thv_client_list-registered.md
@@ -33,4 +33,5 @@ thv client list-registered [flags]
 
 ### SEE ALSO
 
-* [thv client](thv_client.md)	 - Manage MCP clients 
+* [thv client](thv_client.md)	 - Manage MCP clients
+
diff --git a/docs/toolhive/reference/cli/thv_client_register.md b/docs/toolhive/reference/cli/thv_client_register.md
@@ -40,4 +40,5 @@ thv client register [client] [flags]
 
 ### SEE ALSO
 
-* [thv client](thv_client.md)	 - Manage MCP clients 
+* [thv client](thv_client.md)	 - Manage MCP clients
+
diff --git a/docs/toolhive/reference/cli/thv_client_remove.md b/docs/toolhive/reference/cli/thv_client_remove.md
@@ -40,4 +40,5 @@ thv client remove [client] [flags]
 
 ### SEE ALSO
 
-* [thv client](thv_client.md)	 - Manage MCP clients 
+* [thv client](thv_client.md)	 - Manage MCP clients
+
diff --git a/docs/toolhive/reference/cli/thv_run.md b/docs/toolhive/reference/cli/thv_run.md
@@ -56,6 +56,8 @@ thv run [flags] SERVER_OR_IMAGE_OR_PROTOCOL [-- ARGS...]
       --host string                           Host for the HTTP proxy to listen on (IP or hostname) (default "127.0.0.1")
       --image-verification string             Set image verification mode (warn, enabled, disabled) (default "warn")
       --isolate-network                       Isolate the container network from the host (default: false)
+      --jwks-allow-private-ip                 Allow JWKS/OIDC endpoints on private IP addresses (use with caution)
+      --jwks-auth-token-file string           Path to file containing bearer token for authenticating JWKS/OIDC requests
       --name string                           Name of the MCP server (auto-generated from image if not provided)
       --oidc-audience string                  Expected audience for the token
       --oidc-client-id string                 OIDC client ID
@@ -69,12 +71,13 @@ thv run [flags] SERVER_OR_IMAGE_OR_PROTOCOL [-- ARGS...]
       --otel-insecure                         Disable TLS verification for OpenTelemetry endpoint
       --otel-sampling-rate float              OpenTelemetry trace sampling rate (0.0-1.0) (default 0.1)
       --otel-service-name string              OpenTelemetry service name (defaults to toolhive-mcp-proxy)
-      --permission-profile string             Permission profile to use (none, network, or path to JSON file) (default "network")
+      --permission-profile string             Permission profile to use (none, network, or path to JSON file)
       --proxy-mode string                     Proxy mode for stdio transport (sse or streamable-http) (default "sse")
       --proxy-port int                        Port for the HTTP proxy to listen on (host port)
       --secret stringArray                    Specify a secret to be fetched from the secrets manager and set as an environment variable (format: NAME,target=TARGET)
       --target-host string                    Host to forward traffic to (only applicable to SSE or Streamable HTTP transport) (default "127.0.0.1")
       --target-port int                       Port for the container to expose (only applicable to SSE or Streamable HTTP transport)
+      --thv-ca-bundle string                  Path to CA certificate bundle for ToolHive HTTP operations (JWKS, OIDC discovery, etc.)
       --transport string                      Transport mode (sse, streamable-http or stdio)
   -v, --volume stringArray                    Mount a volume into the container (format: host-path:container-path[:ro])
 ```
diff --git a/static/api-specs/toolhive-api.yaml b/static/api-specs/toolhive-api.yaml
@@ -56,13 +56,6 @@ components:
             type: integer
           type: array
           uniqueItems: false
-        allow_transport:
-          description: AllowTransport is a list of allowed transport protocols (tcp,
-            udp)
-          items:
-            type: string
-          type: array
-          uniqueItems: false
         insecure_allow_all:
           description: InsecureAllowAll allows all outbound network connections
           type: boolean
@@ -645,6 +638,9 @@ components:
       - WorkloadStatusStopped
       - WorkloadStatusError
       - WorkloadStatusStarting
+      - WorkloadStatusStopping
+      - WorkloadStatusUnhealthy
+      - WorkloadStatusRemoving
       - WorkloadStatusUnknown
 externalDocs:
   description: ""
