Exposes 131 tools for static codebase analysis directly to Claude and other MCP clients. You get dependency graphs, OSV.dev vulnerability scanning across five threat vectors (CVEs, container images, supply chain integrity, Socket.dev behavioral checks), architecture drift detection, DORA metrics, and git change impact analysis. Supports 35 languages from JavaScript to Ada, parses ASTs locally with zero telemetry, and stores results in a SQLite/Kuzu graph brain for instant requerying. Useful when onboarding to unfamiliar codebases, auditing security posture across dependencies and containers, or generating technical documentation from live repo structure. The toolset includes Cypher queries, test coverage gap detection, and PR impact summaries you can pipe into GitHub Actions.
claude mcp add --transport stdio ashfordeou-grasp uvx grasp