A forensic tool for detecting suspicious GitHub star patterns through the MCP protocol. Exposes an `audit_repo` tool that analyzes both bootstrap injection (earliest ~100 stars) and retrospective injection (latest 30 stars) using five heuristic axes: burst detection, farm suffixes, sequential account IDs, same-second clustering, and interstar gap regularity. Returns LOW/MEDIUM/HIGH verdicts with per-rule evidence, all without requiring tokens or dependencies. Runs over stdio as a local subprocess. Reach for this when vetting repos before adoption or when star counts seem implausibly high for a project's age. Built to give AI agents a structured fraud signal instead of treating raw star counts as ground truth.
claude mcp add --transport stdio ardev-lab-fake-star-audit -- uvx fake-star-audit