mcp-server
Verified Safeby mennansevim
Overview
An AI-powered code review server that integrates with various Git platforms via webhooks to provide automated feedback on pull requests.
Installation
docker build -t mcp-code-review:latest . && docker run -d --name mcp-server -p 8000:8000 --env-file .env -v "$(pwd)/config.yaml:/app/config.yaml:ro" --restart unless-stopped mcp-code-review:latestEnvironment Variables
- GROQ_API_KEY
- ANTHROPIC_API_KEY
- OPENAI_API_KEY
- GITHUB_TOKEN
- GITLAB_TOKEN
- BITBUCKET_USERNAME
- BITBUCKET_APP_PASSWORD
- AZURE_DEVOPS_PAT
- AZURE_DEVOPS_ORG
- WEBHOOK_SECRET
- GITLAB_URL
Security Notes
The server employs good security practices by utilizing environment variables for all API keys and secrets, supporting webhook signature verification, and avoiding direct use of 'eval' or similar dangerous functions. Input to the AI is limited, and error handling for malformed AI responses is present. Potential risks lie in the inherent nature of AI models (e.g., prompt injection or hallucination) and ensuring robust security on the integrated Git platforms and webhook infrastructure.
Similar Servers
github-mcp-server
The GitHub MCP Server enables AI agents, assistants, and chatbots to interact with GitHub's platform for repository management, issue/PR automation, CI/CD intelligence, code analysis, and team collaboration through natural language.
octocode-mcp
The Octocode Research server enables AI agents to perform expert code forensics and deep-dive research across local filesystems (LSP, ripgrep, file I/O) and external GitHub repositories (code search, repo structure, pull requests, package search). It's optimized for architectural analysis, pattern discovery, and implementation planning.
gitlab-mr-mcp
Connects an AI assistant to GitLab to manage merge requests, CI/CD pipelines, and code reviews, enabling natural language interaction.
mcp-adr-analysis-server
Facilitates architectural decision record (ADR) analysis, content security, deployment and environment analysis, and architectural governance using advanced prompting techniques (GKP, APE, Reflexion) and knowledge graph management to automate and improve development workflows.