Other Tools
v1.1.1
active
code-auditor-mcp
io.github.BenAHammond/code-auditor-mcp
Code Quality Auditor: Analyze code for SOLID principles, DRY violations, and more
Documentation
Code Auditor: AI-Powered Code Intelligence
Your AI understands your code. Code Auditor indexes your entire codebase and provides real-time analysis that AI assistants like Claude can actually use to help you write better code.
The Problem It Solves
AI coding assistants are powerful, but they're flying blind. They can't search your codebase, don't know your patterns, and miss critical context. Code Auditor changes that by creating a searchable index of every function, component, and pattern in your code.
How It Works
- Index - Automatically catalogs functions, React components, and dependencies
- Analyze - Detects SOLID violations, code duplication, and security issues
- Connect - AI assistants access your code index via MCP (Model Context Protocol)
- Iterate - Get intelligent suggestions based on your actual codebase
Quick Start (2 minutes)
# Add to your project with Claude Code CLI
claude mcp add code-auditor -- npx code-auditor-mcp
# That's it! Now ask Claude:
# "What authentication functions exist in my codebase?"
# "Find all API endpoints and check for rate limiting"
# "Show me components similar to UserTable"
Core Features That Matter
🔍 Natural Language Code Search
"Find all functions that validate user input"
"Show me where we're calling the payment API"
"What components use the useState hook?"
🎯 Smart Code Analysis
- SOLID Principles - Catch architecture issues before they spread
- DRY Violations - Find duplicate code that should be refactored
- Security Patterns - Verify auth, rate limiting, SQL injection protection
- Dead Code - Identify unused imports and functions
🤖 AI Tool Integration
Auto-generates configurations for:
- Claude (via MCP)
- Cursor
- Continue
- GitHub Copilot
- 10+ other AI assistants
⚙️ Persistent Configuration
Set your analyzer preferences once:
You: "Set SOLID analyzer to allow 3 responsibilities for components"
Claude: Configuration saved! All future audits will use this setting.
Real Examples
Example 1: Finding Authentication Patterns
You: "Show me all authentication-related functions"
Claude: Found 23 functions across 8 files:
- `validateToken()` in auth/tokens.ts:45
- `requireAuth()` in middleware/auth.ts:12
- `checkPermissions()` in auth/permissions.ts:78
...
Example 2: Analyzing Code Quality
You: "Audit the user service for issues"
Claude: Found 3 critical issues:
- Single Responsibility violation: UserService handles both auth and profile updates
- SQL injection risk: Raw query in getUserByEmail() at line 234
- Missing rate limiting on password reset endpoint
Example 3: Discovering Patterns
You: "Find React components similar to DataTable"
Claude: Found 4 similar components:
- `UserTable` - extends DataTable with user-specific columns
- `OrderGrid` - implements similar pagination pattern
- `ProductList` - uses same filtering approach
Installation Options
Global Install
npm install -g code-auditor-mcp
code-audit # Run analysis
Project Install
npm install --save-dev code-auditor
npx code-audit
CI/CD Integration
# GitHub Actions
- name: Code Audit
run: npx code-audit --fail-on-critical
Key Commands
code-audit # Full analysis with HTML report
code-audit -f json # JSON output for CI/CD
code-audit -a solid,dry # Run specific analyzers
code-audit --health # Quick health score (0-100)
The Feedback Loop
- Write Code → Code Auditor indexes it automatically
- Ask AI → "Is there a function to validate emails?"
- Get Context → AI finds
validateEmail()and similar patterns - Improve → AI suggests using existing validation instead of duplicating
- Repeat → Your AI gets smarter about YOUR codebase
Configuration
Set custom thresholds for your architecture:
// Via MCP
mcp.set_analyzer_config({
analyzerName: "solid",
config: {
maxUnrelatedResponsibilities: 4,
patternThresholds: {
"Dashboard": { maxResponsibilities: 6 }
}
}
});
Advanced Search Operators
| What You Want | Search Query |
|---|---|
| Complex functions | complexity:>10 |
| Undocumented exports | exported:true jsdoc:false |
| React hooks usage | component:functional hook:useState |
| Find dependencies | calls:validateUser |
| Unused imports | unused-imports file:src |
Performance
- Indexes 10,000+ functions in seconds
- Incremental updates on file changes
- LokiJS for fast in-memory search
- FlexSearch for intelligent queries
Contributing
See CONTRIBUTING.md for guidelines.
License
MIT - Use it anywhere, anytime.
Ready to give your AI x-ray vision into your code?
claude mcp add code-auditor -- npx code-auditor-mcp
NPM
code-auditor-mcpInstall Command
npm install code-auditor-mcp