v0.1.5

CodeAudit MCP v0.1.5 keeps the v0.1.4 security/CI improvements and aligns the final public skill cleanup with the published package.

Highlights:

• Read-only MCP server for AI coding agents: repo inspection, skill routing, heuristic code/docs audits, docs evidence checks, and issue/PR planning.
• Hosted HTTP project reads are restricted with CODEAUDIT_ALLOWED_ROOTS.
• Normal CI runs on push and pull requests.
• Public skill no longer contains install/run command blocks; install instructions stay in README/docs.
• Tests cover allowed roots, safe path joins, CORS allowlists, code quality fixtures, Next.js security fixtures, and docs evidence mapping.

Install:

npx -y @priyanshuchawda/codeaudit

Skill:

npx skills add priyanshuchawda/codeaudit --skill codeaudit

v0.1.4

CodeAudit MCP v0.1.4 strengthens the project as a read-only MCP server for AI coding agents: repo inspection, skill routing, heuristic code/docs audits, docs evidence checks, and issue/PR planning.

Changes:

• Add hosted HTTP filesystem boundary with CODEAUDIT_ALLOWED_ROOTS.
• Default HTTP allowed roots to process.cwd() when unset; stdio remains unrestricted unless configured.
• Add CI workflow for push and pull_request: install, pnpm check, and build.
• Add README badges, example output, and a clear "What CodeAudit Is Not" section.
• Improve package/repo description and keywords around agent repo audit + workflow routing.
• Add tests for allowed roots, safe path joins, CORS allowlist behavior, code quality audit fixtures, Next.js security audit fixtures, and docs evidence mapping.
• Update Docker and deployment docs for mounted workspace roots.

Install:

npx -y @priyanshuchawda/codeaudit

Skill:

npx skills add priyanshuchawda/codeaudit --skill codeaudit

v0.1.3

Publish CodeAudit as the free public scoped npm package @priyanshuchawda/codeaudit. Keeps the executable bin as codeaudit, the MCP server identity as codeaudit, and the public skills.sh skill as codeaudit.

v0.1.2

Rename project and distribution to CodeAudit. Publish npm package as codeaudit, expose one public skills.sh skill named codeaudit, keep specialist skills internal with metadata.internal, and update MCP docs/resources/client examples.

v0.1.1

Python routing and skills update.\n\n- Adds Python backend and Python MCP server skills\n- Detects uv, pyproject, FastAPI, Django, Flask, Python MCP SDK, pytest, typing/lint tooling, auth, database, and deployment indicators\n- Routes Python MCP work to python-mcp-server-quality, python-mcp-server-generator, and mcp-builder\n- Adds Python MCP fixture and tests

v0.1.0

Initial public release of RepoSentinel MCP.\n\n- Read-only MCP server for local project inspection and skill routing\n- Supports stdio and Streamable HTTP transports\n- Includes repository, docs, tests, security, and installed-skill audit tools\n- Publishes the free public npm package reposentinel-mcp