Is Open Code Review safe to use?

Open Code Review has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install Open Code Review?

Open Code Review can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with Open Code Review?

Open Code Review is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.

Is Open Code Review actively maintained?

Open Code Review is actively maintained — last commit was 7 days ago. It has 9 GitHub stars.

Open Code Review

🤖 AI code quality gate for AI-generated code. Detects hallucinated packages, phantom dependencies, stale APIs, and more. MCP Server + CLI + CI/CD Action.

ActiveNot tested

Developer Tools DevOps

★ 9GitHub

29No CVEsactive

Quick Install

{
  "mcpServers": {
    "open-code-review": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Setup guide

No install config available. Check the server's README for setup instructions.

Should you use this server?

🤖 AI code quality gate for AI-generated code. Detects hallucinated packages, phantom dependencies, stale APIs, and more. MCP Server + CLI + CI/CD Action.

✓

Is it safe?

No package registry to scan.

No authentication — any process on your machine can connect.

License not specified.

✓

Is it maintained?

Last commit 7 days ago. 9 stars.

Will it work with my client?

Transport: stdio. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Score Breakdown

MCPpedia Score

Click each category to see evidence

29D

Last scored 11h ago

How we score →

Security

3/30

No known vulnerabilities.

○

Known CVEs — No package registry to scan

○

Tool safety — No tools to analyze

○

Tool poisoning — No tools to analyze

○

Injection vectors — No tools to analyze

✓

Tool stability — Tool definitions stable

○

Dependency health — No package to analyze

✗

License — No license specified

○

Authentication — No authentication required

○

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Repository — active repo

CVEs checked daily via OSV.dev. Score algorithm is open source.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/open-code-review)](https://mcppedia.org/s/open-code-review)

Reviews

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Open Code Review safe to use?: Open Code Review has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Open Code Review?: Open Code Review can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with Open Code Review?: Open Code Review is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.
Is Open Code Review actively maintained?: Open Code Review is actively maintained — last commit was 7 days ago. It has 9 GitHub stars.

MCP Security Weekly

Get CVE alerts and security updates for Open Code Review and similar servers.

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?