@securityreviewai/security-review-mcp 0.2.9

package/dist/utils/env.js

@@ -0,0 +1,46 @@
+import fs from "node:fs";
+import path from "node:path";
+export function parseDotEnv(content) {
+    const out = {};
+    const lines = content.split(/\r?\n/u);
+    for (const rawLine of lines) {
+        const line = rawLine.trim();
+        if (!line || line.startsWith("#")) {
+            continue;
+        }
+        const eq = line.indexOf("=");
+        if (eq <= 0) {
+            continue;
+        }
+        const key = line.slice(0, eq).trim();
+        if (!key) {
+            continue;
+        }
+        let value = line.slice(eq + 1).trim();
+        const quoted = (value.startsWith("\"") && value.endsWith("\"")) ||
+            (value.startsWith("'") && value.endsWith("'"));
+        if (quoted) {
+            value = value.slice(1, -1);
+        }
+        out[key] = value;
+    }
+    return out;
+}
+export function loadEnvFile(filePath, env) {
+    if (!filePath) {
+        return;
+    }
+    if (!fs.existsSync(filePath)) {
+        return;
+    }
+    const parsed = parseDotEnv(fs.readFileSync(filePath, "utf8"));
+    for (const [key, value] of Object.entries(parsed)) {
+        if (env[key] === undefined || env[key] === "") {
+            env[key] = value;
+        }
+    }
+}
+export function loadDefaultEnvFile(cwd, env) {
+    const dotEnvPath = path.join(cwd, ".env");
+    loadEnvFile(dotEnvPath, env);
+}

package/dist/utils/serialization.js

@@ -0,0 +1,27 @@
+export function jsonStringify(value) {
+    return JSON.stringify(value, (_key, entry) => (typeof entry === "bigint" ? entry.toString() : entry), 2);
+}
+export function textToolResult(value) {
+    return {
+        content: [
+            {
+                type: "text",
+                text: typeof value === "string" ? value : jsonStringify(value),
+            },
+        ],
+    };
+}
+export function errorToolResult(error, statusCode) {
+    return {
+        isError: true,
+        content: [
+            {
+                type: "text",
+                text: jsonStringify({
+                    error,
+                    ...(statusCode === undefined ? {} : { status_code: statusCode }),
+                }),
+            },
+        ],
+    };
+}

package/package.json

@@ -0,0 +1,36 @@
+{
+  "name": "@securityreviewai/security-review-mcp",
+  "version": "0.2.9",
+  "description": "Security Review MCP server (pure Node/TypeScript, npx-ready)",
+  "license": "UNLICENSED",
+  "private": false,
+  "type": "module",
+  "bin": {
+    "security-review-mcp": "dist/bin/security-review-mcp.js"
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "clean": "rm -rf dist",
+    "prepare": "npm run build",
+    "start": "node dist/bin/security-review-mcp.js",
+    "typecheck": "tsc -p tsconfig.json --noEmit"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.26.0",
+    "zod": "^4.3.6"
+  },
+  "devDependencies": {
+    "@types/node": "^25.2.3",
+    "typescript": "^5.9.3"
+  }
+}