VectorCode
Verified Safeby Davidyz
Overview
Indexes code repositories to generate relevant contextual information for Large Language Models (LLMs), enhancing their performance on specific or private codebases.
Installation
vectorcode-mcp-serverEnvironment Variables
- USER
- USERNAME
- HOME
- VECTORCODE_LOG_LEVEL
Security Notes
The project uses file I/O operations and subprocess execution to manage a ChromaDB instance and process files. Paths are generally derived internally or expanded, reducing direct path traversal risks. It can configure Git hooks for automated vectorization, which, while useful, introduces executable scripts into a Git repository. However, the hook content is controlled by the tool or predefined global/local configurations, limiting arbitrary script injection through the tool itself. `db_settings` for ChromaDB are filtered to valid fields, preventing arbitrary configuration exposure. No hardcoded secrets or obvious malicious patterns were found. The primary external network interaction is with ChromaDB, whose security relies on user-side configuration if a remote server is used.
Similar Servers
code-index-mcp
Intelligent code indexing and analysis for Large Language Models, enabling tasks such as code review, refactoring, documentation generation, debugging assistance, and architectural analysis.
haiku.rag
Opinionated agentic RAG powered by LanceDB, Pydantic AI, and Docling to provide hybrid search, intelligent QA, and multi-agent research over user-provided documents, accessible via CLI, Python API, Web App, TUI, or as an MCP server for AI assistants.
abcoder
Starts a Model Context Protocol (MCP) server that provides AST reading tools for code analysis, integrable with AI clients like Claude Code.
Context-Engine
Self-improving code search and context engine for IDEs and AI agents, providing hybrid semantic/lexical search, symbol graph navigation, and persistent memory.