Worked on the IBM/mcp-context-forge repository to enhance authentication security by hardening the OAuth flow and implementing comprehensive Microsoft Entra ID integration tests. Focused on improving error handling for OAuth callbacks, validating authorization codes, and sanitizing root paths to prevent information leakage. Developed end-to-end tests in Python to cover scenarios such as admin role assignments via Entra groups, dynamic role promotion, and token validation, ensuring robust access control. Applied Azure integration and security best practices, including explicit host matching and RBAC decorator stability fixes. Updated documentation and contributor notes to support new workflows, improving reliability and developer efficiency through automation.