RepoSentinel
JSON →AI-powered MCP server that audits local codebases for code quality, security, project structure, and maintainability.
Install
npx -y @priyanshuchawda/codeaudit Tools · 12
- detect_project Identifies empty/existing projects, package manager, framework, language, tests, auth, database, deployment, CI, and risk notes.
- route_skills Returns a skill-routing manifest with workflow phases, recommended tool sequence, skill activation order, quality gates, required outputs, strict instructions, and disallowed actions.
- scan_repo Summarizes trees and classifies important, risk, docs, test, and config files.
- audit_code_quality Runs heuristic maintainability checks for long files, weak schema boundaries, missing tests, mixed responsibilities, and weak error handling.
- audit_nextjs_security Runs heuristic checks for Next.js route, middleware, env, headers, validation, logging, redirect, SSRF, upload, rate-limit, and auth indicators.
- audit_docs_claims Maps strong README/docs claims to evidence found or missing.
- audit_tests Summarizes test setup and missing test areas.
- audit_installed_skills Checks local agent skills for supply-chain, prompt-injection, secret-leakage, dependency-install, webhook, destructive-shell, manifest-quality, duplicate-name, auxiliary-doc, and resource-discovery risks.
- official_docs_router Recommends where to look up official/current docs.
- generate_issue_plan Produces planning artifacts from findings for issues.
- generate_pr_plan Produces planning artifacts from findings for pull requests.
- generate_report Produces planning artifacts from findings as a report.
Environment variables
CODEAUDIT_API_KEYYOUR_API_KEY
Links
★ 1 GitHub stars