Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| NODE_ENV | No | Environment mode (development, production, test). | production |
| LOG_LEVEL | No | Logging level (DEBUG, INFO, WARN, ERROR). | INFO |
| MAX_RETRIES | No | Maximum retry attempts for failed requests. | 3 |
| GITHUB_TOKEN | No | GitHub Personal Access Token for accessing repositories. Recommended for private repositories and higher rate limits. | |
| SCAN_TIMEOUT | No | Timeout for entire repository scans in milliseconds (default: 5 minutes). | 300000 |
| MAX_FILE_SIZE | No | Maximum file size to process in bytes (default: 10MB). | 10485760 |
| RETRY_DELAY_MAX | No | Maximum delay between retries in milliseconds. | 30000 |
| RETRY_DELAY_BASE | No | Base delay for exponential backoff in milliseconds. | 1000 |
| MAX_FILES_PER_SCAN | No | Maximum files to scan per repository. | 10000 |
| GITHUB_REQUEST_TIMEOUT | No | Timeout for individual GitHub API requests in milliseconds. | 30000 |
| CIRCUIT_BREAKER_TIMEOUT | No | Time before attempting recovery in milliseconds. | 60000 |
| GITHUB_RATE_LIMIT_BURST | No | Burst capacity for rate limiter. | 100 |
| CIRCUIT_BREAKER_THRESHOLD | No | Failure threshold before opening circuit. | 5 |
| GITHUB_RATE_LIMIT_PER_HOUR | No | Maximum API calls per hour. | 5000 |
Capabilities
Features and capabilities supported by this server
| Capability | Details |
|---|---|
| tools | {} |
| resources | {} |
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
| scan_repository | Scan a GitHub repository for secrets and sensitive information. Detects 35+ types of secrets including API keys, passwords, tokens, and credentials. Enterprise-grade with rate limiting, retry logic, and comprehensive error handling. |
| scan_code | Scan a code snippet or file content for secrets and sensitive information. Supports up to 10MB of code content with enhanced validation. |
| analyze_security | Perform comprehensive security analysis on a repository, including secret detection, vulnerability assessment, risk scoring, and compliance status. |
| get_secret_types | Get list of all supported secret types that can be detected (35+ types). |
| validate_secret | Validate if a detected secret is still active or has been revoked. |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
| Supported Secret Types | List of all 35+ secret types that can be detected |
| Detection Patterns | Regular expressions and patterns used for secret detection |