JSPM

  • ESM via JSPM
  • ES Module Entrypoint
  • Export Map
  • Keywords
  • License
  • Repository URL
  • TypeScript Types
  • README
  • Created
  • Published
  • Downloads 1450
  • Score
    100M100P100Q103323F
  • License MIT

Model Context Protocol (MCP) server for advanced GitHub repository analysis, code discovery, and npm package exploration. Provides AI assistants with powerful tools to search, analyze, and understand codebases across GitHub and npm ecosystems.

Package Exports

  • octocode-mcp
  • octocode-mcp/build/index.js

This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (octocode-mcp) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.

Readme

Octocode MCP

Octocode MCP is a robust Model Context Protocol (MCP) server designed for comprehensive code discovery and analysis across various platforms. It offers advanced search functionalities, enabling efficient exploration of both internal/public codebases and the expansive GitHub ecosystem using NPM capabilities for more insights.

Version License MCP

Features

For Developers

  • Code Discovery: Find implementations, patterns, and examples across repositories
  • Cross-Repository Investigation: Trace code patterns, dependencies, and implementations across multiple repositories
  • Dependency Analysis: Understand package relationships and find alternative libraries
  • Deep Dependency Insights: Map transitive dependencies, version conflicts, and security vulnerabilities
  • Bug Investigation: Track issues, commits, and pull requests related to specific problems
  • Advanced Bug Hunting: Correlate bugs across repositories, find recurring patterns, and trace root causes
  • Learning & Reference: Access community discussions, documentation, and best practices
  • Architecture Understanding: Explore repository structures and analyze codebases
  • Historical Code Analysis: Understand code evolution through commit history and PR reviews

For Engineering Managers

  • Repository Status Evaluation: Assess the current status and health of repositories
  • Technology Assessment: Evaluate libraries, frameworks, and tools adoption
  • Cross-Team Collaboration Analysis: Track contributions, knowledge sharing, and code reuse patterns
  • Knowledge Management: Discover internal resources, documentation, and established patterns
  • Competitive Analysis: Research similar projects and industry trends
  • Risk & Compliance Management: Identify security vulnerabilities, licensing issues, and maintenance gaps
  • Strategic Planning: Analyze technology trends, migration patterns, and adoption metrics

What it Does

🔍 Comprehensive Code Discovery & Analysis

  • GitHub Code Search: Find specific implementations, functions, and patterns across repositories
  • Repository Exploration: Navigate project structures, fetch complete source files, and understand architectures
  • Cross-Repository Investigation: Trace code patterns, dependencies, and implementations across multiple repositories
  • Branch Intelligence: Automatic branch detection (main/master/develop/trunk) with fallback mechanisms

📦 NPM & Package Ecosystem

  • NPM Package Analysis: Get detailed package information, dependencies, and metadata
  • NPM Registry Search: Discover packages by functionality and keywords
  • Package-to-Repository Mapping: Automatic linking from NPM packages to their GitHub repositories
  • Dependency Graph Analysis: Understand package relationships and find alternatives
  • Repository Discovery: Find relevant projects by keywords, language, topics, stars, and activity
  • Development History: Track code evolution through commits, pull requests, and releases
  • Issue & Bug Tracking: Discover bugs, feature requests, and community-driven solutions
  • Pull Request Analysis: Review implementation approaches, code quality, and merge patterns

👥 Community & Collaboration

  • GitHub Discussions: Access Q&A, tutorials, and community wisdom
  • User & Organization Discovery: Find experts, contributors, and active developers
  • Team Collaboration Analysis: Track contributions, knowledge sharing, and code reuse patterns
  • Organization Intelligence: Automatic detection and access to private repositories

🏷️ Technology & Topic Exploration

  • Topic Discovery: Explore trending technologies and ecosystems with community validation
  • Technology Assessment: Evaluate libraries, frameworks, and tools adoption
  • Featured Content: Access GitHub-curated and community-maintained topics

🔐 Security & Access Management

  • Secure Authentication: Integrated GitHub CLI and NPM authentication
  • Private Repository Access: Organization-aware access control for enterprise environments
  • Local Execution: All operations run locally using your existing permissions
  • No Data Sharing: Ensures privacy and security of your code and credentials

Performance & Intelligence

  • Built-in Caching: Intelligent result caching with configurable timeouts
  • Rate Limiting: Prevents API quota exhaustion with smart request management
  • Progressive Search: Adaptive search strategies from broad to specific
  • Configurable Results: Optimized result limits for different use cases

🐞 Advanced Bug Analysis

  • Multi-Repository Bug Understanding: Correlate issues across related repositories
  • Historical Bug Analysis: Track bug patterns and resolution strategies
  • Security Vulnerability Tracking: Identify and analyze security-related issues
  • Root Cause Analysis: Trace bugs through commit history and discussions

🌐 Remote Code Analysis

  • Cross-Platform Analysis: Analyze code from any accessible repository
  • Architecture Understanding: Explore and document system architectures
  • Code Quality Assessment: Evaluate code patterns and implementation quality
  • Documentation Generation: Create comprehensive documentation from any source

📊 Enterprise & Management Features

  • Repository Health Assessment: Evaluate maintenance status and activity levels
  • Compliance & Licensing: Audit licenses and compliance across repositories
  • Developer Productivity Insights: Analyze contribution patterns and team efficiency
  • Strategic Technology Planning: Research adoption trends and migration patterns

How It Works

This tool utilizes the gh CLI along with the yarn CLI and strong prompts to collect information based on the user's permissions. All operations are executed locally, ensuring that no data is shared externally with the tool. This method takes advantage of the user's existing access rights and configurations to deliver insights and analysis without compromising security or privacy.

Table of Contents

Installation & Setup

Prerequisites

Required Software

  • Node.js: Version 21 or higher
  • GitHub CLI: For GitHub authentication and API access
  • NPM: For package management and analysis

Install GitHub CLI & Login

# macOS
brew install gh
gh auth login

# Other platforms: https://github.com/cli/cli#installation
# Open authentication in web browser and complete login flow

Verify setup

# Check versions
node --version  # Should be 21+
gh --version
gh auth status  # Should show authenticated

Configure MCP Client:

{
  "name": "octocode-mcp",
  "command": "npx", 
  "args": ["octocode-mcp"]
}

NPM Configuration

Ensure your .npmrc files are properly configured

# Check NPM configuration
npm config list
npm whoami  # Verify authentication for private registries

Available Tools

Code & Repository Search

  • Search GitHub Code: Find specific implementations, functions, and patterns
  • Repository Discovery: Locate relevant projects and libraries by keywords
  • File Content Analysis: Fetch complete source files with dependency tracking
  • Repository Structure: Explore project organization and architecture

Package & Dependency Management

  • NPM Package Analysis: Get detailed package information and metadata
  • NPM Registry Search: Discover packages by functionality and keywords
  • Dependency Mapping: Understand package relationships and alternatives

Development History & Collaboration

  • Commit History: Track code evolution and find specific changes
  • Pull Request Analysis: Review implementation approaches and code quality
  • Issue Tracking: Find bugs, feature requests, and community discussions
  • User & Organization Discovery: Identify experts and active contributors

Community & Knowledge

  • GitHub Discussions: Access Q&A, tutorials, and community wisdom
  • Topic Exploration: Discover trending technologies and ecosystems
  • Documentation Access: Find READMEs, guides, and best practices

Advanced Configuration

Rate Limiting & Performance

  • Built-in rate limiting prevents API quota exhaustion
  • Configurable result limits for optimal performance
  • Intelligent caching reduces redundant requests

Authentication Management

  • Seamless GitHub CLI integration
  • NPM registry authentication support
  • Organization-aware access control

Best Practices

Search Strategy

  • Start Broad: Begin with general terms, then narrow down
  • Use Progressive Discovery: Combine multiple tools for comprehensive understanding
  • Leverage Organizations: Use your team's GitHub org for internal discovery
  • Cross-Reference Sources: Combine code, issues, and discussions for complete context

Performance Optimization

  • Use specific repository filters when possible
  • Combine related searches in single sessions
  • Cache frequently accessed information
  • Monitor API rate limits

Troubleshooting

Common Issues

  • Authentication Errors: Verify gh auth status and NPM login
  • No Results: Try broader search terms or different organizations
  • Rate Limiting: Reduce search frequency or use more specific filters
  • Private Repository Access: Ensure proper organization membership
  • NPX cache: To reset the npx cache, you can manually delete the cache directory. The location of the npx cache can vary based on your operating system. Typically, it is located in the .npm/_npx directory within your home folder. You can remove this directory using a command like rm -rf ~/.npm/_npx on Unix-based systems or by deleting it through File Explorer on Windows.

Misconfigured .npmrc File

A misconfigured .npmrc file can lead to various issues, such as authentication errors, incorrect registry settings, or unexpected behavior during package installations. Here's how you can check and troubleshoot your .npmrc file:

  1. Locate the .npmrc File:

    • The .npmrc file can exist in multiple locations, affecting different scopes:
      • Project-level: Located in the root of your project directory.
      • User-level: Located in your home directory (~/.npmrc).
      • Global-level: Located in the global npm configuration directory.

  2. Check for Common Issues:

    • Registry URL: Ensure the registry URL is correct. For example, it should be https://registry.yarnpkg.com/ if using Yarn.
    • Authentication Tokens: Verify that authentication tokens are correctly set and not expired.
    • Proxy Settings: If you're behind a proxy, ensure proxy settings are correctly configured.
    • Syntax Errors: Check for any syntax errors or invalid entries.

  3. View Current Configuration:

    • Use the following command to view the current npm configuration, including settings from all .npmrc files:
      npm config list

  4. Edit the .npmrc File:

    • Open the .npmrc file in a text editor to make necessary corrections. Ensure that sensitive information, like tokens, is not exposed in version control.

  5. Test Configuration:

    • After making changes, test the configuration by running a simple npm command, such as:
      yarn install
    • Ensure that the command executes without errors.

By following these steps, you can identify and resolve issues related to a misconfigured .npmrc file, ensuring smooth package management operations.

Prefered models

License

MIT License - See LICENSE for details.