codenav
Verified Safeby ajacobm
Overview
Provides a backend service for AI agents and developers to perform comprehensive code analysis, generate graph-based insights, and receive real-time updates on codebase changes.
Installation
uv run codenav --mode sse --host 0.0.0.0 --port 8000 --redis-cache --redis-url "redis://localhost:6379" --verboseEnvironment Variables
- CODENAV_API_URL
- REDIS_URL
- REDIS_TEST_DB
- CODE_GRAPH_DEBUG
- MEMGRAPH_URL
- REDIS_PASSWORD
Security Notes
The FastAPI server uses `allow_origins=['*']` in its CORS configuration, which is a critical security vulnerability for production deployments as it permits cross-origin requests from any domain. Additionally, `pickle` is used for serialization in `redis_cache.py` which is inherently unsafe if used with untrusted data, although the primary use case is processing user's own source code. Redis and Memgraph connections use environment variables for configuration, preventing hardcoded credentials. It is generally safe for personal/developer-controlled environments.
Similar Servers
code-index-mcp
Provides intelligent code indexing, searching, and analysis capabilities for large language models to understand and navigate codebases.
chunkhound
Transforms codebases into searchable knowledge bases for AI assistants using semantic search and regex search, with deep research capabilities for code and files.
cclsp
MCP server to integrate LLM-based coding agents with Language Server Protocol (LSP) servers for robust symbol resolution and code navigation.
In-Memoria
Provides persistent intelligence infrastructure (semantic concepts, patterns, architecture) for AI agents to understand and interact with codebases.