kgraph
Verified Safeby DeepakJangra239
Overview
Indexes codebases into a knowledge graph to enable semantic search, precise code navigation, and impact analysis for LLM agents.
Installation
uv tool run kgraphSecurity Notes
The project uses `sqlite3` with parameterized queries, and `yaml.safe_load` for parsing configuration, which are good practices. File system operations are scoped to a user-provided root path. Dynamic module loading for Tree-sitter parsers (`importlib.import_module`) is based on internal, trusted YAML configuration files, mitigating risk. There are no obvious `eval()` calls or direct `subprocess` invocations with unsanitized user input. The primary security consideration would be if an attacker could somehow inject malicious content into the `root_path` or internal configuration files, which is outside the immediate scope of the server's code handling.
Similar Servers
code-index-mcp
Provides intelligent code indexing, searching, and analysis capabilities for large language models to understand and navigate codebases.
chunkhound
Transforms codebases into searchable knowledge bases for AI assistants using semantic search and regex search, with deep research capabilities for code and files.
CodeGraphContext
An MCP server that indexes local code into a Neo4j graph database to provide real-time, accurate context and relationship analysis to AI assistants for understanding, writing, and refactoring code.
codegraph-rust
CodeGraph transforms your codebase into a semantically searchable knowledge graph to augment AI coding assistants with deep understanding and advanced reasoning capabilities beyond simple file searching.