Lekssays/codebadger
A containerized Model Context Protocol (MCP) server providing static code analysis using Joern's Code Property Graph (CPG) with support for Java, C/C++, JavaScript, Python, Go, Kotlin, C#, Ghidra, Jimple, PHP, Ruby, and Swift.
This tool helps software security analysts and developers efficiently examine the structure and potential vulnerabilities within a codebase. It takes source code (Java, C/C++, Python, etc.) or a GitHub repository as input, generates a detailed graph representation, and provides insights into code structure, data flow, and common security weaknesses. The primary user is a security professional or a developer focused on finding and fixing bugs before deployment.
Use this if you need to perform deep static analysis, identify security flaws like buffer overflows or use-after-free, or understand complex codebases without manually stepping through every line.
Not ideal if you're looking for a dynamic analysis tool that executes code to find runtime errors, or if you only need basic linting or style checks.
Stars
47
Forks
6
Language
Python
License
GPL-3.0
Category
Last pushed
Mar 11, 2026
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/mcp/Lekssays/codebadger"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
SonarSource/sonarqube-mcp-server
SonarQube MCP Server
cqfn/aibolit-mcp-server
MCP Server for Aibolit Java Static Analyzer: Helping Your AI Agent Identify Hotspots for Refactoring
mitulgarg/env-doctor
Debug your GPU, CUDA, and AI stacks across local, Docker, and CI/CD (CLI and MCP server)
helixml/kodit
👩💻 MCP server to index external repositories
MarcusJellinghaus/mcp-tools-py
MCP server providing code quality checks (pylint and pytest) with smart LLM-friendly prompts for...