yassineramzi/code-review-mcp-server
If you are the rightful owner of code-review-mcp-server and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.
An MCP-compliant server designed for static code analysis to identify security flaws, bad practices, and optimization opportunities.
Code Review MCP Server
An MCP-compliant server that performs static analysis on code snippets (e.g., Java, Python) to detect security flaws, bad practices, and optimization opportunities.
🚀 Quick Start
git clone https://github.com/yassineramzi/code-review-mcp-server.git
cd code-review-mcp-server
docker build -t mcp-server:latest .
docker run -p 8000:8000 mcp-server:latest
The MCP server will be available on port 8000 by default.
📡 Example Requests
You can explore and test the API interactively using FastAPI Swagger UI: http://localhost:8000/docs#/default/review_code_review_post
1. Health Check
{
"id": "1",
"type": "health_check"
}
Response:
{
"id": "1",
"type": "result",
"success": true,
"message": "MCP Server is running"
}
2. Code Review Request
{
"id": "2",
"type": "analyze_code",
"params": {
"language": "java",
"code": "import java.io.File; import com.amazonaws.services.s3.*; public class Example { public void upload(String bucket) { AmazonS3 s3 = AmazonS3ClientBuilder.defaultClient(); s3.createBucket(bucket); } }"
}
}
Response:
{
"id": "2",
"type": "result",
"success": true,
"findings": [
{
"severity": "HIGH",
"issue": "Unvalidated bucket name passed to S3.createBucket()",
"recommendation": "Validate and sanitize user input before bucket creation."
},
{
"severity": "MEDIUM",
"issue": "AWS client instantiation without custom configuration.",
"recommendation": "Use least-privilege IAM roles and explicit configuration."
}
]
}
👉 Full details and system design explanation: Medium article