MCP server that pushes GitHub Actions CI/CD results and PR events into Claude Code sessions, enabling automatic investigation and remediation.
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.
@modelcontextprotocol/sdk has cross-client data leak via shared server/transport instance reuse
Anthropic's MCP TypeScript SDK has a ReDoS vulnerability
Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default
process.env. You'll be asked to provide them before it can run.ANTHROPIC_API_KEYGITHUB_TOKEN— echo '=<your-PAT>' >> .envGITHUB_WEBHOOK_SECRET— echo '=<paste-secret>' >> .envMCP_PORTREVIEW_DEBOUNCE_MSWATCH_REPOS— "env": { "": "owner/repo1,owner/repo2" }WEBHOOK_DEV_MODEWEBHOOK_PORT[](https://m8ven.ai/mcp/drmf-cz-claude-beacon-10r94i)