mcp-codedoc
Verified Safeby Akshay1018
Overview
AI-powered tool for automated code documentation, quality auditing, refactoring, and security scanning within a local development environment.
Installation
uvx --refresh --from git+https://github.com/akshay1018/mcp-codedoc.git codedocSecurity Notes
The `generate_smart_doc` function can potentially read arbitrary local files if an absolute path is provided for `file_path`. The `refactor_and_optimize`, `evaluate_and_refactor`, and `predict_impact` functions, while employing aggressive path resolution, are primarily constrained to the project root. The `global_security_audit` function performs local regex-based scanning for secrets, which is safe. No `eval` or direct network exfiltration is observed. The server's file system interaction is inherent to its functionality as a local development agent, but the direct use of user-provided `file_path` without explicit `realpath` and path-in-root checks for reading presents a moderate risk if the calling AI/IDE does not sufficiently sanitize input.
Similar Servers
code-index-mcp
Intelligent code indexing and analysis for Large Language Models, enabling tasks such as code review, refactoring, documentation generation, debugging assistance, and architectural analysis.
CodeGraphContext
This MCP Server acts as an expert AI pair programmer's backend, providing real-time, accurate code analysis, indexing, and relationship information from a local codebase to assist with understanding, writing, and refactoring code.
CodeGraphContext
An AI pair programmer that provides real-time, accurate, context-aware assistance by indexing and analyzing codebases (local projects and dependencies) using a graph database, facilitating code understanding, writing, and refactoring across multiple programming languages.
code-assistant
Standardizes communication between code editors and AI coding agents, enabling autonomous code analysis and modification via command-line, GUI, or server modes.