dingdawg-code-review 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. package/README.md +95 -0
  2. package/dist/index.d.ts +10 -0
  3. package/dist/index.js +679 -0
  4. package/package.json +44 -0
  5. package/src/index.ts +762 -0
  6. package/tsconfig.json +14 -0
package/README.md ADDED
@@ -0,0 +1,95 @@
1
+ # dingdawg-code-review
2
+
3
+ AI Code Review Agent with governance receipts. Scan code for security vulnerabilities, quality issues, performance problems, and best practice violations.
4
+
5
+ Every review is governed and receipted for audit compliance.
6
+
7
+ ## Install
8
+
9
+ ```bash
10
+ npx dingdawg-code-review
11
+ ```
12
+
13
+ ### Claude Code
14
+
15
+ ```bash
16
+ claude mcp add dingdawg-code-review npx dingdawg-code-review
17
+ ```
18
+
19
+ ### Cursor / Claude Desktop
20
+
21
+ Add to your MCP config:
22
+
23
+ ```json
24
+ {
25
+ "mcpServers": {
26
+ "dingdawg-code-review": {
27
+ "command": "npx",
28
+ "args": ["dingdawg-code-review"]
29
+ }
30
+ }
31
+ }
32
+ ```
33
+
34
+ ## Tools
35
+
36
+ ### review_code
37
+
38
+ Scan a code snippet or file for issues.
39
+
40
+ - Security vulnerabilities (eval, SQL injection, XSS, hardcoded secrets, command injection)
41
+ - Code quality (empty catch blocks, console statements, any types, var usage)
42
+ - Performance (async forEach, await in loops, JSON clone, DOM queries in loops)
43
+ - Best practices (too many params, long files, deep promise chains, hard exits)
44
+
45
+ **Free tier:** 10 reviews/day
46
+
47
+ ### review_pr
48
+
49
+ Review a pull request diff.
50
+
51
+ - Breaking change detection (removed exports, removed endpoints, schema drops)
52
+ - Security scan on all added lines
53
+ - Test coverage gap detection
54
+ - Approve / request-changes decision
55
+
56
+ **Free tier:** 5 PR reviews/day
57
+
58
+ ### suggest_fix
59
+
60
+ Get a detailed fix suggestion for any finding.
61
+
62
+ - Pass the finding ID from review_code or review_pr (e.g., SEC-001, QUAL-003)
63
+ - Returns fix recommendation with explanation
64
+
65
+ **Free tier:** 20 suggestions/day
66
+
67
+ ## Governance
68
+
69
+ Every response includes:
70
+
71
+ - `receipt_id` — Unique receipt (rcpt_xxxx format) for audit trail
72
+ - `timestamp` — ISO 8601 timestamp of when the review was performed
73
+ - `governance_policy` — Policy version applied
74
+ - `rules_checked` — What rule categories were evaluated
75
+ - `findings_by_severity` — Count of findings per severity level
76
+
77
+ ## Severity Levels
78
+
79
+ | Level | Meaning |
80
+ |-------|---------|
81
+ | critical | Must fix before merge. Security risk or data loss. |
82
+ | high | Should fix before merge. Significant quality or performance issue. |
83
+ | medium | Fix recommended. Code smell or moderate concern. |
84
+ | low | Nice to fix. Minor improvement opportunity. |
85
+ | info | Informational. No action required. |
86
+
87
+ ## Also Available
88
+
89
+ - **dingdawg-compliance** — AI compliance reports (EU AI Act, Colorado AI Act, SOC2, GDPR)
90
+ - **dingdawg-shield** — AI security scanning and vulnerability detection
91
+ - **dingdawg-governance** — AI agent governance with capability checks and policy enforcement
92
+
93
+ ## License
94
+
95
+ MIT
package/dist/index.d.ts ADDED
@@ -0,0 +1,10 @@
1
+ #!/usr/bin/env node
2
+ /**
3
+ * dingdawg-code-review — AI Code Review Agent MCP Server
4
+ *
5
+ * Governed. Receipted. Production-ready.
6
+ *
7
+ * Install: npx dingdawg-code-review
8
+ * Claude Code: claude mcp add dingdawg-code-review npx dingdawg-code-review
9
+ */
10
+ export {};