octocode-mcp 2.3.20 → 2.3.22
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +18 -5
- package/dist/index.js +227 -1
- package/package.json +1 -1
package/README.md
CHANGED
|
@@ -186,14 +186,27 @@ The generated `octocode-mcp.dxt` file can then be installed in Claude Desktop (j
|
|
|
186
186
|
### Local-First Architecture
|
|
187
187
|
- **🏠 100% Local** - Runs entirely on your machine
|
|
188
188
|
- **🚫 Zero Data Collection** - No telemetry or data transmission
|
|
189
|
-
- **🔑
|
|
189
|
+
- **🔑 Safe Token Usage** - Uses GitHub CLI authentication, no personal access tokens needed
|
|
190
|
+
|
|
191
|
+
### Multi-Layer Security Protection
|
|
192
|
+
- **🛡️ Input Sanitization** - Comprehensive validation of all user inputs with Zod schemas
|
|
193
|
+
- **🔐 Content Sanitization** - Automatic detection and redaction of 1100+ secret patterns
|
|
194
|
+
- **⚡ Prompt Injection Defense** - Advanced pattern detection prevents malicious prompt manipulation
|
|
195
|
+
- **🚨 Malicious Content Detection** - Real-time scanning for suspicious patterns and code
|
|
196
|
+
- **🔒 Output Sanitization** - All responses are filtered and sanitized before delivery
|
|
190
197
|
|
|
191
198
|
### Command Execution Security
|
|
192
|
-
- **⚪ Allowlisted Commands Only** - Pre-approved safe commands
|
|
193
|
-
- **🛡️ Argument Sanitization** - Prevents shell injection attacks
|
|
194
|
-
- **✅ Pre-execution Validation** - Every command is validated
|
|
199
|
+
- **⚪ Allowlisted Commands Only** - Pre-approved safe commands (GitHub CLI & NPM only)
|
|
200
|
+
- **🛡️ Argument Sanitization** - Prevents shell injection attacks with proper escaping
|
|
201
|
+
- **✅ Pre-execution Validation** - Every command is validated before execution
|
|
195
202
|
- **🔧 Controlled Environment** - Cross-platform secure shell execution
|
|
196
|
-
- **⏱️ Timeout Protection** - Prevents resource exhaustion
|
|
203
|
+
- **⏱️ Timeout Protection** - Prevents resource exhaustion with configurable timeouts
|
|
204
|
+
|
|
205
|
+
### Secret & Credential Protection
|
|
206
|
+
- **🔍 Comprehensive Detection** - Detects API keys, tokens, private keys, and credentials
|
|
207
|
+
- **🎭 Smart Masking** - Preserves readability while redacting sensitive information
|
|
208
|
+
- **🏢 Enterprise Ready** - Handles AWS, Google Cloud, Azure, and 100+ service patterns
|
|
209
|
+
- **🔄 Real-time Processing** - Secrets are detected and masked in real-time during content processing
|
|
197
210
|
|
|
198
211
|
## Best Practices 💡
|
|
199
212
|
|