NPM Sentinel MCP

A powerful Model Context Protocol (MCP) server that revolutionizes NPM package analysis through AI. Built to integrate with Claude and Anthropic AI, it provides real-time intelligence on package security, dependencies, and performance. This MCP server delivers instant insights and smart analysis to safeguard and optimize your npm ecosystem, making package management decisions faster and safer for modern development workflows.

Features

Version analysis and tracking
Dependency analysis and mapping
Security vulnerability scanning
Package quality metrics
Download trends and statistics
TypeScript support verification
Package size analysis
Maintenance metrics
Real-time package comparisons

Note: The server provides AI-assisted analysis through MCP integration.

Installation

Install in VS Code

Add this to your VS Code MCP config file. See VS Code MCP docs for more info.

{
  "servers": {
    "npm-sentinel": {
      "type": "stdio",
      "command": "npx",
      "args": ["-y", "@nekzus/mcp-server@latest"]
    }
  }
}

Docker

Build

# Build the Docker image
docker build -t nekzus/npm-sentinel-mcp .

Usage

You can run the MCP server using Docker with directory mounting to /projects:

{
  "mcpServers": {
    "npm-sentinel-mcp": {
      "command": "docker",
      "args": [
        "run",
        "-i",
        "--rm",
        "-w", "/projects",
        "--mount", "type=bind,src=${PWD},dst=/projects",
        "nekzus/npm-sentinel-mcp",
        "node",
        "dist/index.js"
      ]
    }
  }
}

For multiple directories:

{
  "mcpServers": {
    "npm-sentinel-mcp": {
      "command": "docker",
      "args": [
        "run",
        "-i",
        "--rm",
        "-w", "/projects",
        "--mount", "type=bind,src=/path/to/workspace,dst=/projects/workspace",
        "--mount", "type=bind,src=/path/to/other/dir,dst=/projects/other/dir,ro",
        "nekzus/npm-sentinel-mcp",
        "node",
        "dist/index.js"
      ]
    }
  }
}

Note: All mounted directories must be under /projects for proper access.

Usage with Claude Desktop

Add this to your claude_desktop_config.json:

{
  "mcpServers": {
    "npmAnalyzer": {
      "transport": "stdio",
      "command": "npx",
      "args": ["-y", "@nekzus/mcp-server"]
    }
  }
}

Configuration file locations:

Windows: %APPDATA%/claude-desktop/claude_desktop_config.json
macOS: ~/Library/Application Support/claude-desktop/claude_desktop_config.json
Linux: ~/.config/claude-desktop/claude_desktop_config.json

NPX

{
  "mcpServers": {
    "npm-sentinel-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@nekzus/mcp-server"
      ]
    }
  }
}

API

Resources

npm://registry: NPM Registry interface
npm://security: Security analysis interface
npm://metrics: Package metrics interface

Tools

npmVersions

Get all versions of a package
Input: packages (string[])
Returns: Version history with release dates

npmLatest

Get latest version information
Input: packages (string[])
Returns: Latest version details and changelog

npmDeps

Analyze package dependencies
Input: packages (string[])
Returns: Complete dependency tree analysis

npmTypes

Check TypeScript support
Input: packages (string[])
Returns: TypeScript compatibility status

npmSize

Analyze package size
Input: packages (string[])
Returns: Bundle size and import cost analysis

npmVulnerabilities

Scan for security vulnerabilities
Input: packages (string[])
Returns: Security advisories and severity ratings

npmTrends

Get download trends
Input:
- packages (string[])
- period ("last-week" | "last-month" | "last-year")
Returns: Download statistics over time

npmCompare

Compare multiple packages
Input: packages (string[])
Returns: Detailed comparison metrics

npmMaintainers

Get package maintainers
Input: packages (string[])
Returns: Maintainer information and activity

npmScore

Get package quality score
Input: packages (string[])
Returns: Comprehensive quality metrics

npmPackageReadme

Get package README
Input: packages (string[])
Returns: Formatted README content

npmSearch

Search for packages
Input:
- query (string)
- limit (number, optional)
Returns: Matching packages with metadata

npmLicenseCompatibility

Check license compatibility
Input: packages (string[])
Returns: License analysis and compatibility info

npmRepoStats

Get repository statistics
Input: packages (string[])
Returns: GitHub/repository metrics

npmDeprecated

Check for deprecation
Input: packages (string[])
Returns: Deprecation status and alternatives

npmChangelogAnalysis

Analyze package changelogs
Input: packages (string[])
Returns: Changelog summaries and impact analysis

npmAlternatives

Find package alternatives
Input: packages (string[])
Returns: Similar packages with comparisons

npmQuality

Assess package quality
Input: packages (string[])
Returns: Quality metrics and scores

npmMaintenance

Check maintenance status
Input: packages (string[])
Returns: Maintenance activity metrics

Build

# Build with npm
npm install
npm run build

License

This MCP server is licensed under the MIT License. This means you are free to use, modify, and distribute the software, subject to the terms and conditions of the MIT License. For more details, please see the LICENSE file in the project repository.

NPM Sentinel MCP

Integrations

NPM Sentinel MCP

Features

Installation

Install in VS Code

Docker

Build

Usage

Usage with Claude Desktop

NPX

API

Resources

Tools

npmVersions

npmLatest

npmDeps

npmTypes

npmSize

npmVulnerabilities

npmTrends

npmCompare

npmMaintainers

npmScore

npmPackageReadme

npmSearch

npmLicenseCompatibility

npmRepoStats

npmDeprecated

npmChangelogAnalysis

npmAlternatives

npmQuality

npmMaintenance

Build

License

Related MCP Servers

mcp-server-code-assist

Google Workspace MCP Server

Hello World MCP Server

MCP Server Basic Example