sharang/compliance-scanner-agent

Fork 0

Files

Sharang Parnerkar 32e5fc21e7

CI / Format (push) Successful in 3s

Details

CI / Clippy (push) Successful in 4m4s

Details

CI / Security Audit (push) Successful in 1m42s

Details

CI / Tests (push) Successful in 4m38s

Details

CI / Deploy Agent (push) Successful in 2s

Details

CI / Deploy Dashboard (push) Successful in 1s

Details

CI / Deploy MCP (push) Failing after 2s

Details

CI / Detect Changes (push) Successful in 7s

Details

CI / Deploy Docs (push) Successful in 2s

Details

feat: add MCP server for exposing compliance data to LLMs (#5 )

New `compliance-mcp` crate providing a Model Context Protocol server
with 7 tools: list/get/summarize findings, list SBOM packages, SBOM
vulnerability report, list DAST findings, and DAST scan summary.
Supports stdio (local dev) and Streamable HTTP (deployment via MCP_PORT).
Includes Dockerfile, CI clippy check, and Coolify deploy job.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Co-authored-by: Sharang Parnerkar <parnerkarsharang@gmail.com>
Reviewed-on: #5

2026-03-09 08:21:04 +00:00

1.6 KiB

Raw Permalink Blame History

Environment Variables

Complete reference for all environment variables. See Configuration for detailed descriptions of each variable.

Required

# MongoDB connection
MONGODB_URI=mongodb://root:example@localhost:27017/compliance_scanner?authSource=admin

Agent

AGENT_PORT=3001
SCAN_SCHEDULE=0 0 */6 * * *
CVE_MONITOR_SCHEDULE=0 0 0 * * *
GIT_CLONE_BASE_PATH=/tmp/compliance-scanner/repos
MONGODB_DATABASE=compliance_scanner

Dashboard

DASHBOARD_PORT=8080
AGENT_API_URL=http://localhost:3001

LLM / AI

LITELLM_URL=http://localhost:4000
LITELLM_API_KEY=
LITELLM_MODEL=gpt-4o
LITELLM_EMBED_MODEL=text-embedding-3-small

Git Providers

# GitHub
GITHUB_TOKEN=
GITHUB_WEBHOOK_SECRET=

# GitLab
GITLAB_URL=https://gitlab.com
GITLAB_TOKEN=
GITLAB_WEBHOOK_SECRET=

Issue Trackers

# Jira
JIRA_URL=
JIRA_EMAIL=
JIRA_API_TOKEN=
JIRA_PROJECT_KEY=

External Services

SEARXNG_URL=http://localhost:8888
NVD_API_KEY=

Authentication

KEYCLOAK_URL=http://localhost:8080
KEYCLOAK_REALM=compliance
KEYCLOAK_CLIENT_ID=compliance-dashboard
REDIRECT_URI=http://localhost:8080/auth/callback
APP_URL=http://localhost:8080

MCP Server

MONGODB_URI=mongodb://root:example@localhost:27017/compliance_scanner?authSource=admin
MONGODB_DATABASE=compliance_scanner
# Set to enable HTTP transport (omit for stdio)
MCP_PORT=8090

Observability

# Set to enable OpenTelemetry export (omit to disable)
OTEL_EXPORTER_OTLP_ENDPOINT=http://localhost:4317
OTEL_SERVICE_NAME=compliance-agent

1.6 KiB Raw Permalink Blame History

Environment Variables

Required

Agent

Dashboard

LLM / AI

Git Providers

Issue Trackers

External Services

Authentication

MCP Server

Observability

1.6 KiB

Raw Permalink Blame History