a11y-mcp
Verified Safeby Berucha
Overview
Automated WCAG 2.2 AA accessibility code review for GitHub Pull Requests, providing immediate feedback and fix suggestions.
Installation
sh /workspace/a11y-mcp/run.shEnvironment Variables
- GITHUB_TOKEN
- LDS_STORYBOOK_URL
- LDS_CACHE_TTL
Security Notes
The server interacts with GitHub API (`@octokit/rest`) to fetch PR content and post comments, requiring `GITHUB_TOKEN` with `pull-requests: write` scope. File system operations (`fs.readFileSync`) are used for local file analysis. The `child_process.spawn` is used internally by `mcp-client.js` to invoke the `mcp-server.js` or `cli-scanner.js` locally, and by `run.sh` to potentially start a Python HTTP server (for artifacts viewer). No direct `eval` or arbitrary external command execution from user input is observed. `LDS_STORYBOOK_URL` could point to an external resource, but its usage is currently for a planned feature (Phase 2) and not actively making network requests from the core analysis. Overall, the approach seems designed with security in mind for its intended purpose, but relies on GitHub's security for fetching PR content.
Similar Servers
github-mcp-server
The GitHub MCP Server enables AI agents, assistants, and chatbots to interact with GitHub's platform for repository management, issue/PR automation, CI/CD intelligence, code analysis, and team collaboration through natural language.
octocode-mcp
The Octocode Research server enables AI agents to perform expert code forensics and deep-dive research across local filesystems (LSP, ripgrep, file I/O) and external GitHub repositories (code search, repo structure, pull requests, package search). It's optimized for architectural analysis, pattern discovery, and implementation planning.
mcp-accessibility-scanner
Automated web accessibility scanning and browser automation using Playwright and Axe-core, enabling LLMs to perform WCAG compliance checks and generate reports.
starReport
starReport is a Node.js tool for automatically generating and managing GitHub repository activity reports (stars, commits, issues), supporting MCP protocol, integrating large model AI analysis, and pushing reports to Feishu groups.