MCP Catalogs
Home

rigour

by rigour-labs·20·Score 43

Rigour is an AI coding agent security system that detects secrets, structural issues, and AI drift through MCP tools.

securitydeveloper-toolsai-llm
1
Forks
4
Open issues
1 mo ago
Last commit
2d ago
Indexed

Overview

Rigour acts as an immune system for AI coding agents, preventing dangerous code commits in real-time. It analyzes code across multiple languages (TypeScript, JavaScript, Python, Go, Ruby, C#, Java, Kotlin, Rust) using AST-based detection rather than heuristics. The system learns from each scan, creating patterns specific to your codebase that strengthen over time. When violations are detected, Rigour provides precise fix instructions in JSON format that AI agents can consume to self-heal issues without human intervention.

Try asking AI

After installing, here are 5 things you can ask your AI assistant:

you:Security scanning for AI code generation to prevent hardcoded secrets
you:Real-time governance dashboard for AI coding sessions in IDEs
you:Self-healing code analysis that provides fix instructions directly to AI agents
you:How does Rigour differ from traditional linters like ESLint?
you:What programming languages does Rigour support?

When to choose this

Choose Rigour when you need real-time security and governance for AI-generated code, especially in teams where AI agents autonomously write code and need guardrails.

When NOT to choose this

Avoid Rigour if you need traditional code analysis without AI integration or if you require compliance with strict audit trails for all code changes.

Tools this server exposes

8 tools extracted from the README
  • rigour_check

    Performs security and structural analysis of code files

  • fix_packet

    Provides JSON-formatted instructions for fixing code violations

  • list_violations

    Lists all detected violations in the codebase

  • check_security

    Specifically checks for security vulnerabilities and hardcoded secrets

  • check_ast

    Performs AST-based analysis of code structure

  • check_ai_drift

    Detects AI-related issues like hallucinated imports and context drift

  • get_dashboard_data

    Provides real-time governance dashboard data

  • get_patterns

    Retrieves patterns learned by the Rigour Brain

Comparable tools

eslint-mcpsemgrep-mcpcode-review-mcpgithub-copilot

Installation

Install via npm:

npm install -g @rigour-labs/mcp

Add to Claude Desktop:

{ "mcpServers": { "rigour": { "command": "npx", "args": ["-y", "@rigour-labs/mcp"] } } }

Quick scan command:

npx rigour-scan

FAQ

How does Rigour differ from traditional linters like ESLint?
Rigour is AI-native, learns your codebase patterns, provides self-healing fix packets directly to agents, and detects AI-specific issues like hallucinated imports and context drift that traditional linters miss.
What programming languages does Rigour support?
Rigour supports TypeScript, JavaScript, Python, Go, Ruby, C#, Java, Kotlin, and Rust through AST-based analysis rather than pattern matching.

Compare rigour with

rigour vs ultimate_mcp_serverrigour vs mcp-server-chartrigour vs everythingrigour vs filesystemrigour vs time
GitHub →

Last updated · Auto-generated from public README + GitHub signals.