Argus - 存储库分析和安全评估工具

强大的模型上下文协议 (MCP) 工具，用于分析代码存储库、执行安全扫描和评估多种编程语言的代码质量。

特征

多语言支持
- Go：gocyclo、golangci-lint 分析
- Java：PMD静态分析
- Python：Pylint、Bandit 安全检查
- JavaScript/TypeScript：ESLint 分析
- 自动语言检测
安全扫描
- 集成 Trivy 漏洞扫描程序
- 全面的安全报告
- 支持多个分支
Git 操作
- 分支机构计数和管理
- 提交历史分析
- 差异比较
- 存储库结构可视化

安装

先决条件

Python 3.8+
Git
libmagic（系统依赖）

系统依赖项

macOS

brew install libmagic

Linux（Ubuntu/Debian）

sudo apt-get update sudo apt-get install -y libmagic1

通过 uv 安装

uvx argus

用法

基本 MCP 命令

# Analyze repository structure analyze_repository_structure( repo_url="https://gitlab.com/user/repo", gitlab_credentials={"api_key": "your-token"}, # Optional branch="main" # Optional ) # Perform code quality analysis analyze_code_quality( repo_url="https://gitlab.com/user/repo", language="python" # Optional, will auto-detect if not specified ) # Security scan security_scan_repository( repo_url="https://gitlab.com/user/repo", scan_type="trivy" ) # Compare changes compare_git_changes( repo_url="https://gitlab.com/user/repo", source="feature-branch", target="main" ) # Security scan repository security_scan_repository( repo_url="https://gitlab.com/user/repo", scan_type="trivy" ) ### MCP Configuration ```json { "command": "uvx", "args": [ "--from", "git+https://github.com/athapong/argus", "argus" ], "alwaysAllow": [ "get_commit_history", "enumerate_branches", "compare_git_changes", "analyze_code_quality", "security_scan_repository" ], "timeout": 300 }

支持的分析工具

语言	工具	安装
去	gocyclo，golangci-lint	`go install github.com/fzipp/gocyclo/cmd/gocyclo@latest`
Java	偏振模色散	macOS： `brew install pmd` ，Linux：自动安装
Python	皮林特，土匪	通过依赖项自动安装
JavaScript	ESLint	`npm install -g eslint`

环境变量

SKIP_SYSTEM_CHECK ：设置为任意值以跳过系统依赖性检查
PATH ：工具安装时自动更新

错误处理

该工具提供了详细的错误消息和优雅的回退：

依赖项安装失败显示警告而不是错误
如果自动检测失败，语言检测将回退到指定语言
工具执行错误被捕获在响应结构中

执照

MIT 许可证

贡献

分叉存储库
创建你的功能分支
提交你的更改
推送到分支
创建新的 Pull 请求

This server cannot be installed

-

security - not tested

A

license - permissive license

-

quality - not tested

How are these scores calculated?

remote-capable server

The server can be hosted and run remotely because it primarily relies on remote services or has no dependency on the local environment.

用于分析代码存储库、执行安全扫描和评估多种编程语言的代码质量的模型上下文协议工具。

Related Resources

Reddit Discussion about this server

Related MCP Servers

code-index-mcp
johnhuang316
A
security
A
license
A
quality
A Model Context Protocol (MCP) server that helps large language models index, search, and analyze code repositories with minimal setup
Last updated -
12
386
MIT License
SafetyCulture MCP Server
zerubroberts
-
security
F
license
-
quality
A Model Context Protocol server that allows users to query and analyze their SafetyCulture inspection data using natural language after providing an API key.
Last updated -
CodeAnalysis MCP Server
0xjcf
A
security
F
license
A
quality
A comprehensive Model Context Protocol server for advanced code analysis that provides tools for syntax analysis, dependency visualization, and AI-assisted development workflow support.
Last updated -
28
4
Code Merge MCP
yy1588133
A
security
A
license
A
quality
A Model Context Protocol server that helps large language models process code repositories by providing file tree generation, code merging, and code analysis capabilities.
Last updated -
3
22
MIT License

View all related MCP servers

Argus

Argus - 存储库分析和安全评估工具

特征

安装

先决条件

系统依赖项

macOS

Linux（Ubuntu/Debian）

通过 uv 安装

用法

基本 MCP 命令

支持的分析工具

环境变量

错误处理

执照

贡献

Related Resources

Related MCP Servers

code-index-mcp

SafetyCulture MCP Server

CodeAnalysis MCP Server

Code Merge MCP

Appeared in Searches

New MCP Servers

MCP directory API