code-reason
JSON →MCP server that gives coding agents program-analysis primitives â data flow, call graphs, taint analysis â so they reason from ground truth instead of grep-and-guess. (same as the GitHub About â keeps your messaging consistent across the web).
Tools · 9
- reason_analyze_project Parse a project into a code property graph
- reason_find_entry_points Locate HTTP handlers, CLI entries, framework hooks
- reason_find_callers "Who calls this function?"
- reason_find_callees "What does this function call?"
- reason_query_dataflow Forward/backward reachability over the data-flow graph
- reason_trace_taint_path Full source-to-sink evidence chain between any two points
- reason_scan_injections Catalog-driven taint analysis (SQLi/XSS/command injection)
- reason_list_supported_checks Enumerate built-in vulnerability checks
- reason_get_finding_detail Description + remediation for a scan finding
Links
★ 5 GitHub stars