docker(deps): bump python from 3.13-alpine to 3.14-alpine

Bumps python from 3.13-alpine to 3.14-alpine.

---
updated-dependencies:
- dependency-name: python
  dependency-version: 3.14-alpine
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

Author: dependabot[bot]

.eslintrc.js

@@ -1,40 +1,14 @@
-// ESLint configuration for SQLite MCP Server JavaScript utilities
-// This helps address CodeQL security warnings
-// Using .eslintrc.js format for maximum compatibility
-
 module.exports = {
   env: {
     node: true,
-    es2022: true
+    es2021: true,
   },
+  extends: 'eslint:recommended',
   parserOptions: {
-    ecmaVersion: 2022,
-    sourceType: "commonjs"
+    ecmaVersion: 'latest',
+    sourceType: 'module',
   },
   rules: {
-    // Security-related rules to address CodeQL warnings
-    "no-eval": "error",
-    "no-implied-eval": "error",
-    "no-new-func": "error",
-    "no-unsafe-finally": "error",
-    "no-unsafe-negation": "error",
-    
-    // Prevent potential injection vulnerabilities
-    "no-template-curly-in-string": "error",
-    
-    // Best practices
-    "no-unused-vars": ["error", { "argsIgnorePattern": "^_" }],
-    "no-console": "warn",
-    "prefer-const": "error",
-    "no-var": "error",
-    
-    // Error handling
-    "no-empty": "error",
-    "no-throw-literal": "error",
-    
-    // Code quality
-    "eqeqeq": "error",
-    "no-unreachable": "error",
-    "valid-typeof": "error"
-  }
-};
+    // Add any custom rules here
+  },
+};

Dockerfile

@@ -25,7 +25,7 @@ ADD . /app
 RUN --mount=type=cache,target=/root/.cache/uv \
     uv sync --frozen --no-dev
 
-FROM python:3.13-alpine
+FROM python:3.14-alpine
 
 # Upgrade OpenSSL to patched version FIRST THING
 RUN apk add --no-cache --upgrade openssl=3.5.4-r0

package.json

@@ -26,12 +26,12 @@
   },
   "homepage": "https://github.com/neverinfamous/sqlite-mcp-server#readme",
   "engines": {
-    "node": ">=18.0.0"
+    "node": "^18.18.0 || ^20.9.0 || >=21.1.0"
   },
   "dependencies": {},
   "devDependencies": {
-    "eslint": "^8.57.0",
-    "prettier": "^3.0.0"
+    "eslint": "^9.39.1",
+    "prettier": "^3.7.4"
   },
   "files": [
     "jsonb-utils.js",

pyproject.toml

@@ -5,9 +5,9 @@ description = "A SQLite MCP server with JSONB support, database administration t
 readme = "README.md"
 requires-python = ">=3.10"
 dependencies = [
-    "mcp>=1.14.0",
+    "mcp>=1.23.1",
     "h11>=0.16.0",  # Security fix for CVE-2025-43859, GHSA-vqfr-h8mv-ghfj
-    "starlette>=0.49.1",  # Security fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8 (O(n^2) DoS via Range header)
+    "starlette>=0.50.0",  # Security fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8 (O(n^2) DoS via Range header)
 ]
 authors = [
     {name = "Chris LeRoux", email = "[email protected]"},
@@ -24,6 +24,7 @@ classifiers = [
     "Programming Language :: Python :: 3.11",
     "Programming Language :: Python :: 3.12",
     "Programming Language :: Python :: 3.13",
+    "Programming Language :: Python :: 3.14",
     "Topic :: Database",
     "Topic :: Software Development :: Libraries :: Python Modules",
 ]

requirements.txt

@@ -1,9 +1,9 @@
 # Production dependencies
-mcp>=1.14.0
+mcp>=1.23.1
 
 # Security fixes - pin vulnerable packages to fixed versions
 h11>=0.16.0  # Fix for CVE-2025-43859, GHSA-vqfr-h8mv-ghfj
-starlette>=0.49.1  # Fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8 (O(n^2) DoS via Range header)
+starlette>=0.50.0  # Fix for CVE-2025-62727, GHSA-7f5h-v6xp-fcq8 (O(n^2) DoS via Range header)
 
 # Development dependencies (install with: pip install -r requirements-dev.txt)
 # pyright>=1.1.405