orgbrain
Verified Safeby irab
Overview
Provides a Model Context Protocol (MCP) server for knowledge extraction and cross-repository analysis within multi-repository organizations.
Installation
node dist/index.jsEnvironment Variables
- MCP_CONFIG
- ORGBRAIN_EXTRACTOR_CONCURRENCY
- ORGBRAIN_REPO_CONCURRENCY
- ORGBRAIN_GIT_FETCH_CONCURRENCY
- GIT_SSH_COMMAND
Security Notes
The system involves cloning repositories and executing `git` commands, which inherently carries risks if interacting with untrusted code. The `GitManager` explicitly sets `GIT_SSH_COMMAND: "ssh -o BatchMode=yes -o StrictHostKeyChecking=no"`. Disabling `StrictHostKeyChecking` bypasses host key verification for SSH connections, making the cloning process vulnerable to Man-in-the-Middle (MITM) attacks if the git remote server is compromised or impersonated. While this prevents interactive prompts and might be acceptable in tightly controlled environments (e.g., trusted CI/CD against a trusted GitHub instance), it is a significant security consideration for a general-purpose tool.
Similar Servers
chunkhound
Provides local-first codebase intelligence, extracting architecture, patterns, and institutional knowledge for AI assistants.
In-Memoria
Provides persistent intelligence infrastructure for AI agents, enabling them to understand codebases, detect patterns, predict coding approaches, and generate context-aware insights.
codegraph-rust
Transforms codebases into a semantically searchable knowledge graph, enabling AI agents to reason about code relationships, architecture, and impact rather than just performing text-based searches.
CodeMCP
Provides deep code intelligence (symbol navigation, impact analysis, architecture maps, ownership, risk assessment) to AI assistants, CLI, and HTTP API.