NPM Sentinel MCP

JSON →

stdio

development

An AI-powered MCP server for analyzing NPM package security, dependencies, and performance.

Tools · 19

npmVersions Get all versions of a package. Input: packages (string[]). Returns: Version history with release dates.
npmLatest Get latest version information. Input: packages (string[]). Returns: Latest version details and changelog.
npmDeps Analyze package dependencies. Input: packages (string[]). Returns: Complete dependency tree analysis including direct dependencies and full transitive graph (count and explicit flatten list) mapping through deps.dev.
npmTypes Check TypeScript support. Input: packages (string[]). Returns: TypeScript compatibility status.
npmSize Analyze package size. Input: packages (string[]). Returns: Bundle size and import cost analysis.
npmVulnerabilities Scan for security vulnerabilities. Features: Instant Transitive Scanning via Google's deps.dev API, Ecosystem Awareness, Rich Reports with CVE IDs and summaries from OSV.dev. Input: packages (string[]). Returns: Detailed security advisories, CVEs, and severity ratings.
npmTrends Get download trends. Input: packages (string[]), period (last-week | last-month | last-year). Returns: Download statistics over time.
npmCompare Compare multiple packages. Input: packages (string[]). Returns: Detailed comparison metrics.
npmMaintainers Get package maintainers. Input: packages (string[]). Returns: Maintainer information and activity.
npmScore Get package quality score. Input: packages (string[]). Returns: Comprehensive quality metrics.
npmPackageReadme Get package README. Input: packages (string[]). Returns: Formatted README content.
npmSearch Search for packages. Input: query (string), limit (number, optional). Returns: Matching packages with metadata.
npmLicenseCompatibility Check license compatibility. Input: packages (string[]). Returns: License analysis and compatibility info.
npmRepoStats Get repository statistics. Input: packages (string[]). Returns: GitHub/repository metrics.
npmDeprecated Check for deprecation. Input: packages (string[]). Returns: Deprecation status and alternatives.
npmChangelogAnalysis Analyze package changelogs. Input: packages (string[]). Returns: Changelog summaries and impact analysis.
npmAlternatives Find package alternatives. Input: packages (string[]). Returns: Similar packages with comparisons.
npmQuality Assess package quality. Input: packages (string[]). Returns: Quality metrics and scores.
npmMaintenance Check maintenance status. Input: packages (string[]). Returns: Maintenance activity metrics.

Environment variables

NPM_REGISTRY_URL

Links

githubgithub.com/Nekzus/npm-sentinel-mcp ↗

★ 17 GitHub stars