@rigour-labs/mcp 5.0.1 → 5.1.1

package/README.md

@@ -1,8 +1,8 @@
 # 🛡️ Rigour MCP Server
 
-**The Quality Gate for AI-Assisted Engineering.**
+**AI Agent Governance via Model Context Protocol — quality gates, DLP, drift detection, and deep analysis.**
 
-Rigour is a local-first Model Context Protocol (MCP) server that forces AI agents (Claude, Cursor, Windsurf, etc.) to meet strict engineering standards before marking tasks as complete.
+Rigour is a local-first MCP server that governs AI agents (Claude, Cursor, Cline, Windsurf) with deterministic quality gates, credential interception, and memory governance.
 
 [![Registry](https://img.shields.io/badge/MCP-Registry-brightgreen)](https://github.com/mcp)
 [![npm version](https://img.shields.io/npm/v/@rigour-labs/mcp?color=cyan)](https://www.npmjs.com/package/@rigour-labs/mcp)
@@ -11,54 +11,76 @@ Rigour is a local-first Model Context Protocol (MCP) server that forces AI agent
 
 ## 🚀 Overview
 
-Rigour moves code quality enforcement from the "Post-Commit" phase to the "In-Progress" phase. By running as an MCP server inside your editor, it provides the AI with a deterministic PASS/FAIL loop, preventing "Vibe Coding" and broken builds.
+Rigour moves code quality enforcement from "Post-Commit" to "In-Progress." By running as an MCP server inside your editor, it provides the AI with a deterministic PASS/FAIL loop, preventing "Vibe Coding" and broken builds.
 
 ### Key Features:
-- **Quality Gates**: 23 deterministic checks for file size, complexity, hygiene, security, and AI-native drift detection.
-- **8-Language Support**: JS/TS, Python, Go, Ruby, C#/.NET, Rust, Java, and Kotlin — with stdlib whitelists, dependency manifest parsing, and project-relative import resolution.
+
+- **27+ Quality Gates**: Deterministic checks for file size, complexity, hygiene, security, and AI-native drift detection.
+- **8-Language Hallucination Detection**: JS/TS, Python, Go, Ruby, C#/.NET, Rust, Java, and Kotlin — with stdlib whitelists, dependency manifest parsing, and project-relative import resolution.
+- **AI Agent DLP**: 29 credential patterns intercepted before agents see them (<50ms). Anti-evasion: unicode normalization, entropy detection, bidi stripping.
+- **Memory & Skills Governance**: Blocks agent writes to native memory files (CLAUDE.md, .clinerules, .windsurf/memories/); forces DLP-scanned `rigour_remember` instead.
 - **Real-Time Hooks**: Sub-200ms file-write hooks for Claude Code, Cursor, Cline, and Windsurf — catches issues as the AI writes, not after CI.
-- **OWASP LLM Top 10**: Strong coverage on all 10 risks from the OWASP Top 10 for LLM-Generated Code, with 25+ security patterns.
-- **Two-Score System**: Separate AI Health Score and Structural Score with provenance tracking.
-- **Context Memory**: Persistent memory that tracks project rules and patterns across sessions.
-- **Pattern Reinvention Blocking**: Warns or blocks the AI when it tries to rewrite existing utilities.
-- **Security Audits**: Real-time CVE detection for dependencies the AI is suggesting.
-- **Multi-Agent Governance**: Agent registration, scope isolation, checkpoint supervision, and verified handoffs for multi-agent workflows.
+- **Two-Score System**: Separate AI Health Score and Structural Score with provenance tracking (`ai-drift`, `traditional`, `security`, `governance`).
+- **Deep Analysis**: Five-signal LLM pipeline (AST facts, embeddings, style fingerprints, logic baselines, dependency graphs) with deterministic verification.
+- **Multi-Agent Governance**: Agent registration, scope isolation, checkpoint supervision, and verified handoffs.
 - **Industry Presets**: SOC2, HIPAA, FedRAMP-ready gate configurations.
-- **Local-First**: Deterministic gates run locally. If deep analysis is configured with a cloud provider, code context may be sent to that provider.
+- **Local-First**: Deterministic gates run locally. Cloud deep analysis is opt-in BYOK.
 
 ---
 
-## 🛠️ Available Tools
+## 🛠️ Available Tools (25)
 
-### Core Tools
+### Core Quality Tools
 
 | Tool | Description |
 |:---|:---|
 | `rigour_check` | Runs all configured quality gates on the current workspace. |
-| `rigour_explain` | Explains why a specific gate failed and provides actionable fix instructions. |
+| `rigour_explain` | Explains why a specific gate failed with actionable fix instructions. |
 | `rigour_status` | Quick PASS/FAIL check with JSON-friendly output for polling. |
 | `rigour_get_fix_packet` | Retrieves prioritized Fix Packet (v2) with severity and provenance. |
 | `rigour_list_gates` | Lists all configured quality gates and their thresholds. |
 | `rigour_get_config` | Returns the current rigour.yml configuration. |
 | `rigour_check_pattern` | Checks if a proposed code pattern already exists in the codebase. |
-| `rigour_remember` | Stores project-specific context or rules in Rigour's persistent memory. |
-| `rigour_recall` | Retrieves stored context to guide AI generation. |
-| `rigour_forget` | Removes a stored memory by key. |
 | `rigour_security_audit` | Runs a live CVE check on project dependencies. |
-| `rigour_run` | Executes a command under Rigour supervision with human arbitration. |
-| `rigour_run_supervised` | Full supervisor mode — iterative command + gate check loop. |
 | `rigour_review` | High-fidelity code review on a PR diff against all quality gates. |
 
-### Real-Time Hooks (v3.0)
+### Memory & Context Tools
+
+| Tool | Description |
+|:---|:---|
+| `rigour_remember` | DLP-gated persistent memory — scans values before storing. |
+| `rigour_recall` | DLP-gated recall — blocks tainted memories on read. |
+| `rigour_forget` | Removes a stored memory by key. |
+
+### Real-Time Hooks & DLP
+
+| Tool | Description |
+|:---|:---|
+| `rigour_hooks_check` | Fast hook checker on specific files (<200ms). Also accepts `text` param for DLP mode — scans user input for credentials (AWS keys, API tokens, database URLs, private keys, JWTs) before agent processing. |
+| `rigour_hooks_init` | Generate hook configs for Claude, Cursor, Cline, or Windsurf. Installs quality hooks + DLP pre-input hooks by default. Pass `dlp: false` to skip DLP. |
+
+### Deep Analysis
 
 | Tool | Description |
 |:---|:---|
-| `rigour_hooks_check` | Run fast hook checker on specific files (<100ms). Catches: hardcoded secrets, hallucinated imports, command injection, file size. |
-| `rigour_hooks_init` | Generate hook configs for Claude, Cursor, Cline, or Windsurf. Installs real-time checks on every file write. |
+| `rigour_check_deep` | LLM-powered code review with five-signal extraction → verification pipeline. Local-first or cloud BYOK. |
+| `rigour_deep_stats` | Score history, trend analysis, and top issues from SQLite storage. |
+
+### Supervisor & Execution
 
-### Frontier Model Tools (v2.14+)
+| Tool | Description |
+|:---|:---|
+| `rigour_run` | Executes a command under Rigour supervision with human arbitration. |
+| `rigour_run_supervised` | Full supervisor mode — iterative command + gate check loop. |
+
+### Settings
+
+| Tool | Description |
+|:---|:---|
+| `rigour_mcp_get_settings` | Get MCP runtime settings (.rigour/mcp-settings.json). |
+| `rigour_mcp_set_settings` | Set MCP runtime settings (e.g., deep_default_mode). |
 
-For next-gen multi-agent workflows (Opus 4.6, GPT-5.3-Codex):
+### Multi-Agent Governance
 
 | Tool | Description |
 |:---|:---|

package/dist/tools/deep-handlers.js

@@ -36,15 +36,15 @@ export async function handleCheckDeep(runner, cwd, config, args) {
     if (!isTestRuntime()) {
         try {
             const { openDatabase, insertScan, insertFindings } = await import('@rigour-labs/core');
-            const db = openDatabase();
+            const db = await openDatabase();
             if (db) {
                 const repoName = path.basename(cwd);
-                const scanId = insertScan(db, repoName, report, {
+                const scanId = await insertScan(db, repoName, report, {
                     deepTier: args.pro ? 'deep' : (execution.isLocal ? 'lite' : 'cloud'),
                     deepModel: report.stats.deep?.model,
                 });
-                insertFindings(db, scanId, report.failures);
-                db.close();
+                await insertFindings(db, scanId, report.failures);
+                await db.close();
             }
         }
         catch {
@@ -112,17 +112,17 @@ export async function handleCheckDeep(runner, cwd, config, args) {
 export async function handleDeepStats(cwd, limit = 10) {
     try {
         const { openDatabase, getRecentScans, getScoreTrendFromDB, getTopIssues } = await import('@rigour-labs/core');
-        const db = openDatabase();
+        const db = await openDatabase();
         if (!db) {
             return {
                 content: [{ type: "text", text: "SQLite storage not available. Run `rigour check --deep` first to generate scan data." }],
             };
         }
         const repoName = path.basename(cwd);
-        const scans = getRecentScans(db, repoName, limit);
-        const trend = getScoreTrendFromDB(db, repoName, limit);
-        const topIssues = getTopIssues(db, repoName, 10);
-        db.close();
+        const scans = await getRecentScans(db, repoName, limit);
+        const trend = await getScoreTrendFromDB(db, repoName, limit);
+        const topIssues = await getTopIssues(db, repoName, 10);
+        await db.close();
         if (scans.length === 0) {
             return {
                 content: [{ type: "text", text: `No deep analysis scans found for "${repoName}". Run \`rigour check --deep\` first.` }],
@@ -148,7 +148,7 @@ export async function handleDeepStats(cwd, limit = 10) {
         // v5: Temporal Drift Report
         try {
             const { generateTemporalDriftReport, formatDriftSummary } = await import('@rigour-labs/core');
-            const driftReport = generateTemporalDriftReport(cwd);
+            const driftReport = await generateTemporalDriftReport(cwd);
             if (driftReport && driftReport.totalScans >= 3) {
                 text += `\n${'═'.repeat(60)}\n`;
                 text += formatDriftSummary(driftReport);

package/dist/tools/deep-handlers.test.js

@@ -10,7 +10,7 @@ describe('handleCheckDeep privacy routing', () => {
             score: 100,
             ai_health_score: 100,
             structural_score: 100,
-            deep: { enabled: true, tier: 'lite', model: 'Qwen3.5-0.8B', total_ms: 1000 },
+            deep: { enabled: true, tier: 'lite', model: 'Qwen2.5-Coder-0.5B', total_ms: 1000 },
         },
     };
     it('reports local execution by default', async () => {

package/dist/tools/definitions.js

@@ -34,7 +34,7 @@ export const TOOL_DEFINITIONS = [
                 ...cwdParam(),
                 files: { type: "array", items: { type: "string" }, description: "Optional file paths (relative to cwd) to limit scan scope for both deterministic and deep checks." },
                 deep: { type: "string", enum: ["off", "quick", "full"], description: "Deep mode: 'off' (default), 'quick' (deep enabled with lite model), 'full' (deep enabled, combine with pro=true for full deep model)." },
-                pro: { type: "boolean", description: "Use full deep model (Qwen2.5-Coder-1.5B) instead of lite (Qwen3.5-0.8B) when deep is enabled." },
+                pro: { type: "boolean", description: "Use full deep model (Qwen2.5-Coder-1.5B) instead of lite (Qwen2.5-Coder-0.5B) when deep is enabled." },
                 apiKey: { type: "string", description: "Optional cloud API key for deep analysis." },
                 provider: { type: "string", description: "Cloud provider for deep analysis (claude, openai, gemini, groq, mistral, together, deepseek, ollama, etc.)." },
                 apiBaseUrl: { type: "string", description: "Custom API base URL for self-hosted/proxy deep endpoints." },
@@ -461,12 +461,12 @@ export const TOOL_DEFINITIONS = [
     // ─── Deep Analysis (v4.0+) ──────────────────────────────
     {
         name: "rigour_check_deep",
-        description: "Run quality gates WITH deep LLM-powered analysis. Three-step pipeline: AST extracts facts → LLM interprets → AST verifies. Local-first by default (Qwen3.5-0.8B lite sidecar), or bring your own API key for any cloud provider.",
+        description: "Run quality gates WITH deep LLM-powered analysis. Three-step pipeline: AST extracts facts → LLM interprets → AST verifies. Local-first by default (Qwen2.5-Coder-0.5B lite sidecar), or bring your own API key for any cloud provider.",
         inputSchema: {
             type: "object",
             properties: {
                 ...cwdParam(),
-                pro: { type: "boolean", description: "Use full deep model (Qwen2.5-Coder-1.5B) instead of default lite model (Qwen3.5-0.8B)." },
+                pro: { type: "boolean", description: "Use full deep model (Qwen2.5-Coder-1.5B) instead of default lite model (Qwen2.5-Coder-0.5B)." },
                 apiKey: { type: "string", description: "API key for cloud LLM provider. If provided, uses cloud instead of local sidecar." },
                 provider: { type: "string", description: "Cloud provider name (e.g., 'claude', 'openai', 'gemini', 'groq', 'mistral', 'together', 'fireworks', 'deepseek', 'perplexity', 'ollama', 'lmstudio'). Default: 'claude' when apiKey is provided." },
                 apiBaseUrl: { type: "string", description: "Custom API base URL for self-hosted or proxy endpoints." },

package/dist/tools/quality-handlers.test.js

@@ -23,7 +23,7 @@ describe('handleCheck deep routing', () => {
             ...baseReport,
             stats: {
                 ...baseReport.stats,
-                deep: { enabled: true, tier: 'lite', model: 'Qwen3.5-0.8B' },
+                deep: { enabled: true, tier: 'lite', model: 'Qwen2.5-Coder-0.5B' },
             },
         });
         const runner = { run };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@rigour-labs/mcp",
-  "version": "5.0.1",
+  "version": "5.1.1",
   "description": "MCP server for AI code governance — OWASP LLM Top 10 (10/10), real-time hooks, 25+ security patterns, hallucinated import detection, multi-agent governance. Works with Claude, Cursor, Cline, Windsurf, Gemini. Industry presets for HIPAA, SOC2, FedRAMP.",
   "license": "MIT",
   "homepage": "https://rigour.run",
@@ -48,7 +48,7 @@
     "execa": "^8.0.1",
     "fs-extra": "^11.2.0",
     "yaml": "^2.8.2",
-    "@rigour-labs/core": "5.0.1"
+    "@rigour-labs/core": "5.1.1"
   },
   "devDependencies": {
     "@types/node": "^25.0.3",