mcp-server
Verified Safeby mennansevim
Overview
An AI-powered code review server that integrates with various Git platforms via webhooks to provide automated feedback on pull requests.
Installation
docker build -t mcp-code-review:latest . && docker run -d --name mcp-server -p 8000:8000 --env-file .env -v "$(pwd)/config.yaml:/app/config.yaml:ro" --restart unless-stopped mcp-code-review:latestEnvironment Variables
- GROQ_API_KEY
- ANTHROPIC_API_KEY
- OPENAI_API_KEY
- GITHUB_TOKEN
- GITLAB_TOKEN
- BITBUCKET_USERNAME
- BITBUCKET_APP_PASSWORD
- AZURE_DEVOPS_PAT
- AZURE_DEVOPS_ORG
- WEBHOOK_SECRET
- GITLAB_URL
Security Notes
The server employs good security practices by utilizing environment variables for all API keys and secrets, supporting webhook signature verification, and avoiding direct use of 'eval' or similar dangerous functions. Input to the AI is limited, and error handling for malformed AI responses is present. Potential risks lie in the inherent nature of AI models (e.g., prompt injection or hallucination) and ensuring robust security on the integrated Git platforms and webhook infrastructure.
Similar Servers
github-mcp-server
Connects AI agents, assistants, and chatbots directly to GitHub's platform to read repositories, manage issues and PRs, analyze code, and automate workflows through natural language interactions.
octocode-mcp
Enables AI assistants to search, analyze, and extract insights from millions of GitHub repositories, supporting deep code research, architectural analysis, and pattern discovery. It provides a structured interface for AI to interact with GitHub codebases.
mcp-adr-analysis-server
AI-powered Architectural Decision Record (ADR) analysis, generation, and validation server. It integrates advanced prompting techniques (GKP, APE, Reflexion) to assist with software architecture, development workflows, deployment, security analysis, rule generation, and project planning.
claude-power-pack
Provides AI-powered code review and analysis using Google Gemini, offering detailed feedback, root cause analysis, and security considerations across multi-turn sessions.