It was confirmed when @sabre1041 was testing the secure MCP server demo. So I'm adding this note to different sources.

At the Quarkus level, it is too early to consider making it a default option, as it is not obvious if the default way of submitting GitHiub client id and secret is being deprecated or if it is a case of the legacy GitHub OAuth2 deployment...