Bump com.alibaba.nacos:nacos-client from 3.1.1 to 3.2.1-2026.03.30

[dependabot]

Bumps com.alibaba.nacos:nacos-client from 3.1.1 to 3.2.1-2026.03.30.

Release notes

Sourced from com.alibaba.nacos:nacos-client's releases.

3.2.1-2026.03.30

Nacos 3.2.1-2026.03.30 is a snapshot release focused on critical bug fixes for issues discovered in 3.2.0, particularly around AI module dependency conflicts, console UI bugs, and race conditions in the skill publish pipeline.

Key highlights include:

• Dependency Resolution: Upgraded MCP SDK to 0.17.0 to resolve json-schema-validator conflicts affecting AI module functionality
• AI Module Stability: Fixed race condition in skill publish pipeline and streamlined skill download routing
• Console UI Fixes: Addressed configuration file editing errors and namespace ID validation issues in the new UI
• Input Validation: Enhanced parameter validation in ops controller forms for better security

Feature

• #14794 Support force-publish skills for admin user

Enhancement/Refactor

• #14784 Validate input parameters in ops controller forms for better security

BugFix

• #14765 Fix configuration file editing error in 3.2 console
• #14768 Fix /v3/console/ai/mcp/importToolsFromMcp failure due to json-schema-validator dependency conflict
• #14771 Fix batch import failure in legacy console UI
• #14775 Add missing OIDC-related configurations to application.properties template
• #14783 Remove downloadSkillZip from AiClientProxy interface and route skill download directly to HTTP client
• #14786 Eliminate race condition in AI publish pipeline by pre-generating executionId
• #14794 Fix namespace ID validation issue in new UI when adding custom namespace

Dependencies

• #14782 Upgrade MCP SDK to 0.17.0 to resolve json-schema-validator conflict

Full Changelog: alibaba/nacos@3.2.0...3.2.1-2026.03.30

3.2.0 (Mar 27th, 2026)

Nacos 3.2.0 is a major release focused on plugin architecture enhancement, AI Registry expansion, API modernization, and code quality improvements. Key highlights include:

• AI Registry Completes the "AI Triad": Skill Registry and Prompt Registry join existing MCP/Agent Registry, with Nacos Copilot integration for AI-assisted management
• Plugin Architecture Modernization: Comprehensive SPI-based plugin management with console UI, cluster-wide synchronization, and PostgreSQL enhancements
• API Cleanup: Legacy UDP PUSH support removed, /v1 and /v2 HTTP APIs extracted to submodules for future removal
• Security & Code Quality: OIDC/OAuth2 authentication plugin, multiple FindBugs fixes, dead code removal, and JDK 17+ compatibility enhancements
• Console Modernization: Dual UI support for new/legacy console switching with improved user experience

Feature

• #13699 Support outputSchema for MCP tools
• #14041 Merge nacos-plugin PostgreSQL & Base Implementation into main repository
• #14056 Refactor datasource plugins structure and enhance PostgreSQL capabilities
• #14077 Implement SPI-based plugin discovery and management API
• #14078 Implement cluster-wide state synchronization for plugins
• #14079 Add plugin management console UI and API

... (truncated)

Commits

• 9e968cc style(common): fix header comment formatting in AbstractNacosRestTemplate.java.
• 6e6c850 chore(build): update project revision to 3.2.1-2026.03.30.
• 2a213de Support force-publish skills for admin user. (#14794)
• a0200d5 fix(common): add ByteArrayResponseHandler to fix byte[] deserialization in Na...
• 920551e develop fix ut (#14788)
• 40e1e48 ➖ remove duplicate dependency (#14769)
• 2989450 [AI] Remove downloadSkillZip from AiClientProxy interface, Skill always uses ...
• c9161d1 fix(ai): eliminate race condition in publish pipeline by pre-generating execu...
• 3856ec7 Fix UT. (#14781)
• 3dfee74 feat(core): validate input parameters in ops controller forms. (#14784)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)