scanrail 0.1.1 → 0.1.3

package/README.md

@@ -30,6 +30,16 @@ scanrail run --only headers
 
 The first release includes the CLI scaffold, config generation, workspace setup, JSON/HTML reporting, and a native security headers scanner. Docker-backed adapters for Gitleaks, Trivy, and Semgrep are planned next.
 
+## MCP
+
+Scanrail includes a local stdio MCP server for AI clients:
+
+```bash
+scanrail mcp serve
+```
+
+The MCP MVP exposes bounded tools for `doctor`, config reading, latest report summaries, and the native headers scan with explicit active-scan confirmation.
+
 ## Package Layout
 
 `scanrail` is the recommended npm entrypoint. It depends on `@scanrail/cli`, which installs one optional platform package:
@@ -46,6 +56,7 @@ The first release includes the CLI scaffold, config generation, workspace setup,
 - Repository: https://github.com/raeseoklee/scanrail
 - Documentation: https://github.com/raeseoklee/scanrail#readme
 - Issues: https://github.com/raeseoklee/scanrail/issues
+- Security: https://github.com/raeseoklee/scanrail/blob/main/SECURITY.md
 
 ## License
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "scanrail",
-  "version": "0.1.1",
+  "version": "0.1.3",
   "description": "Developer-first security scan orchestrator",
   "license": "Apache-2.0",
   "repository": {
@@ -20,7 +20,7 @@
     "README.md"
   ],
   "dependencies": {
-    "@scanrail/cli": "0.1.1"
+    "@scanrail/cli": "0.1.3"
   },
   "publishConfig": {
     "access": "public"
@@ -35,6 +35,8 @@
     "trivy",
     "gitleaks",
     "owasp",
-    "cli"
+    "cli",
+    "mcp",
+    "model-context-protocol"
   ]
 }