karukia-mcp 3.0.1 → 3.0.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +12 -3
- package/dist/http.js +155 -196
- package/dist/index.js +73 -181
- package/package.json +18 -11
package/README.md
CHANGED
|
@@ -12,7 +12,7 @@
|
|
|
12
12
|
|
|
13
13
|
**The complete AI-assisted development methodology, delivered via MCP.**
|
|
14
14
|
|
|
15
|
-
**Latest: v3.0**
|
|
15
|
+
**Latest: v3.0.1**
|
|
16
16
|
|
|
17
17
|
27 tools, 20 skills, 1673+ checkpoints across 11 audit dimensions. Works with any AI platform (Claude Code, Cursor, Windsurf, Copilot...) through the Model Context Protocol.
|
|
18
18
|
|
|
@@ -49,7 +49,7 @@ SCAN → karukia_scan "Run all 11 dimensions at once"
|
|
|
49
49
|
|
|
50
50
|
## Quick Start
|
|
51
51
|
|
|
52
|
-
**Prerequisites:** [Node.js](https://nodejs.org/)
|
|
52
|
+
**Prerequisites:** [Node.js](https://nodejs.org/) 22 or later.
|
|
53
53
|
|
|
54
54
|
### Step 1 — Add KARUKIA to your project
|
|
55
55
|
|
|
@@ -151,7 +151,6 @@ Each skill returns a complete prompt that transforms your AI into a specialist.
|
|
|
151
151
|
| `audit_opquast` | Quality Auditor | Deep Opquast compliance audit with 14 thematic checklists |
|
|
152
152
|
| `ebios_rm_audit` | Risk Analyst | EBIOS Risk Manager methodology (ANSSI) — formal risk analysis |
|
|
153
153
|
| `security_hardening` | Hardening Planner | Security improvement chantiers |
|
|
154
|
-
| `terraform_update` | IaC Specialist | Terraform automation for KMS, GCS, IAM |
|
|
155
154
|
| `doc_refactor` | Doc Auditor | Documentation accuracy audit vs actual code |
|
|
156
155
|
|
|
157
156
|
### Dimensional Skills (v3.0 New)
|
|
@@ -295,6 +294,16 @@ Built from real-world experience securing a healthcare SaaS application to HDS 2
|
|
|
295
294
|
|
|
296
295
|
---
|
|
297
296
|
|
|
297
|
+
## Privacy & Data Handling
|
|
298
|
+
|
|
299
|
+
- **KARUKIA MCP does not store any user data server-side.** In stdio mode (default via `npx`), the server is stateless — no data leaves your machine.
|
|
300
|
+
- **Generated prompts** are returned to your AI client (Claude, GPT, Cursor, etc.). Do not include real health data, credentials, or sensitive personal information in tool call arguments (e.g., the `scope`, `task`, or `period` fields).
|
|
301
|
+
- **HTTP mode** (`start:http`): request logs contain session metadata (tool name, duration, HTTP status) but never the content of requests or generated prompts. Sensitive headers (`Authorization`, `Mcp-Session-Id`) are automatically redacted in logs.
|
|
302
|
+
- **Session memory files** (stored in `karukia/memory/sessions/` on your machine): follow the retention policy documented in [`karukia/config/session-retention.md`](./karukia/config/session-retention.md). For teams in regulated sectors: do not store real patient data or PHI in session files.
|
|
303
|
+
- **For teams in regulated sectors (healthcare, finance)**: use stdio mode (local) for maximum data isolation, or contact contact@karukia.com for the managed offering.
|
|
304
|
+
|
|
305
|
+
---
|
|
306
|
+
|
|
298
307
|
## License
|
|
299
308
|
|
|
300
309
|
KARUKIA MCP is free for personal, educational, and internal professional use.
|