Joern's Code Property Graph meets LLM tooling. This exposes 30+ static analysis operations over CPGs for Java, C/C++, JavaScript, Python, Go, Kotlin, C#, PHP, Ruby, and Swift. You get taint flow tracking, program slicing, vulnerability pattern detection (use after free, format strings, TOCTOU), and control flow graph extraction as MCP tools. Point it at a repo or local path, generate the CPG, then run CPGQL queries or use prebuilt detectors for common CWEs. Runs containerized with Joern doing the heavy lifting. Custom detectors go in Scala templates without touching core code. If you're doing security research or want semantic code analysis beyond grep, this bridges the gap between program analysis and chat interfaces.
claude mcp add --transport stdio lekssays-codebadger uvx codebadger