fix: update version to 1.5.3 in package-lock.json

[andyMrtnzP]

v1.5.3 - 2026-05-27

• Add destructive hints for tools

Summary by CodeRabbit

• New Features
  • Added destructive operation hints across tools to enhance safety awareness and user clarity on which operations modify data.
  • Extended OAuth support to include ChatGPT connector integration patterns for improved authentication compatibility.

[coderabbitai]

Warning

Review limit reached

@andyMrtnzP, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 6 minutes and 16 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 5e932122-aa5b-442d-beec-26c4bb24c3c1

📥 Commits

Reviewing files that changed from the base of the PR and between 8acab03 and 08cd397.

📒 Files selected for processing (1)

• CHANGELOG.md

Walkthrough

This PR adds explicit destructiveHint metadata annotations to all MCP tools to declare whether they perform state-altering operations, expands OAuth redirect URI allowlist for ChatGPT connectors, and introduces a test suite validating tool annotation compliance. No command execution logic or request/response behavior changed.

Changes

Tool Destructive Hints and OAuth Configuration

Layer / File(s)	Summary
OAuth redirect URI configuration src/config.ts, test/lib/config.spec.ts, CHANGELOG.md	Default allowed OAuth redirect patterns now include ChatGPT connector oauth wildcard and legacy callback. Baseline test patterns and release notes updated for v1.5.3.
Tool destructive hint annotations across all tools src/tools/agent.ts, src/tools/crawl.ts, src/tools/download.ts, src/tools/export.ts, src/tools/function.ts, src/tools/map.ts, src/tools/performance.ts, src/tools/search.ts, src/tools/smartscraper.ts	Every tool now explicitly sets destructiveHint in its metadata: true for agent, download, function; false for skill, crawl, export, map, performance, search, smartscraper.
Tool annotations test suite test/tools/annotations.spec.ts	New test registers all tools and validates each declares required behavioral hints (readOnlyHint, destructiveHint, openWorldHint) as explicit booleans.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• browserless/browserless-mcp#94: Adds destructive hint annotations across the same set of tool files in a separate prior iteration.
• browserless/browserless-mcp#55: Updates OAuth redirect URI patterns in config alongside corresponding test baseline.
• browserless/browserless-mcp#40: Modifies default allowed redirect URI patterns for OAuth configuration.

Suggested reviewers

• artiom
• ashwinsingh2007
• ahmedAmien

Poem

🐰 Each tool now speaks its truth with pride,
"I change the world!" some loudly cried.
While others whisper, "Read-only, friend,"
The hints are set from start to end. 🛠️

🚥 Pre-merge checks | ✅ 2 | ❌ 3

❌ Failed checks (3 warnings)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The PR title mentions updating package-lock.json version, but the actual changes focus on adding destructive hints to tools across multiple files and updating configuration patterns.	Revise the title to reflect the primary change: 'Add destructive hints for tools' aligns better with the actual changeset scope and intent.
Description check	⚠️ Warning	The description lacks the required template structure with Summary, Related issues, Changes, Test plan, and Checklist sections, making it incomplete against the repository standards.	Fill out the complete PR description template including Summary (3+ bullet points), Related issues, Changes list, Test plan checkboxes, and Checklist items to meet repository requirements.
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch release/1.5.3

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}