Skip to main content

A periscope for your repos - read-only MCP server for sibling repository context

Project description

Repiscope

A periscope for your repos — see everything, touch nothing.

Repiscope is a read-only MCP server that gives your coding agent (Claude Code, Cursor, or any MCP client) awareness of the sibling repositories next to the one it's working in — without ever letting it modify them.

Why

When you run a coding agent inside project A, sometimes it needs to know how you solved something in project B. Opening project B to the agent is scary: it might start editing files there. Telling it "don't touch anything" is a request. Repiscope makes it a guarantee: the server exposes zero write tools, so the agent structurally cannot modify your other repos.

See it in action

You're working in project-a and your agent needs to know how you handled auth in another project. Instead of you copy-pasting files, the agent asks Repiscope directly:

You:    How did I do JWT refresh in my other API project?

Agent:  (calls list_projects → sees "billing-api")
        (calls search "refresh_token" project="billing-api")
        (calls read_file "billing-api" "src/auth/tokens.py")

        In billing-api you rotate the refresh token on every use and
        store the previous hash for a 60s grace window — here's the
        pattern, adapted for project-a:
        ...

The agent read three files in a repo it has no ability to write to. No copy-paste, no "please don't edit anything," no risk.

Tools

Tool Input Returns
list_projects() every sibling repo + one-line description
project_overview(project) repo name full overview: purpose, stack, structure, recent commits
search(query, project?) text, optional repo files & lines matching the query
read_file(project, path) repo + file path full file contents (size-capped)
store_summary(project, summary) repo + your text caches an agent-written summary (see below)

How it stays fresh

Overviews are cached as markdown and refreshed lazily: on each call Repiscope compares the repo's current git commit hash against the one recorded when the overview was built. Same hash → serve the cache. Different → rebuild just that repo's overview. No cron, no daemons.

Borrowed intelligence

Repiscope has no LLM of its own — no API key, no model calls, zero cost. But it talks to LLMs all day, so it borrows them: when an overview has no fresh agent-written summary, it ends with a note asking the calling agent to write one and hand it back via store_summary. The summary then opens every future overview of that project — written by one agent, read by all the next — until the repo's next commit marks it outdated and the cycle repeats.

Security by architecture

Repiscope is built so that the safe behaviour is not a promise — it's the only behaviour possible:

  • Zero repo-write tools. The server exposes no tool that can create, edit or delete anything inside your repositories. The one tool that accepts data, store_summary, can only write to Repiscope's own cache in ~/.cache/repiscope. An agent cannot misuse a capability that doesn't exist.
  • Secrets are invisible. A single filter (privacy.py) is enforced by every tool: private keys, certificates (.pem, .pfx, .p12, …), .env* files, keystores, and anything named like a credential never appear in overviews, trees, search results or file reads. Honest limit: the filter hides sensitive files — it does not scrub mentions of e.g. a password pasted inside an ordinary text file.
  • You define the perimeter. Repiscope only sees the folder you explicitly pass (--root), and --exclude makes chosen repos fully invisible — they can't even be resolved by name.
  • It leaves no trace. Overview caches live in ~/.cache/repiscope, never inside your repositories.

Quick start

git clone https://github.com/3xpr1ment/repiscope.git
cd repiscope
python -m venv .venv && .venv/bin/pip install -e .

Register it with your MCP client — for Claude Code:

claude mcp add repiscope --scope user -- \
  /path/to/repiscope/.venv/bin/repiscope --root ~/your/projects/folder

Optionally hide repos with --exclude repo-a --exclude repo-b.

Status

v1.5 — working and dogfooded daily. Four read-only tools plus borrowed-LLM summaries, lazy cache refresh, sensitive-file filtering. No tests yet; API may still change.

License

MIT

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

repiscope-0.2.1.tar.gz (15.2 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

repiscope-0.2.1-py3-none-any.whl (13.8 kB view details)

Uploaded Python 3

File details

Details for the file repiscope-0.2.1.tar.gz.

File metadata

  • Download URL: repiscope-0.2.1.tar.gz
  • Upload date:
  • Size: 15.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.2

File hashes

Hashes for repiscope-0.2.1.tar.gz
Algorithm Hash digest
SHA256 c7d0ebb8b5b5cae4caf099b4b61d81873b5896306266d875a97a6997a29750d1
MD5 e5afabdb367d9f29b401e59221a2d12d
BLAKE2b-256 bc693229cea1d9870542b143321f4a54e5dc4f0b587f272ae07fe24f5636fd16

See more details on using hashes here.

File details

Details for the file repiscope-0.2.1-py3-none-any.whl.

File metadata

  • Download URL: repiscope-0.2.1-py3-none-any.whl
  • Upload date:
  • Size: 13.8 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.2

File hashes

Hashes for repiscope-0.2.1-py3-none-any.whl
Algorithm Hash digest
SHA256 bb3eaeb120c66d58bd8d6a6a49d89d7449eb483ef457c18bf5acdb9d056e7b14
MD5 00abd4c276516488b25b1ba3ccb8f7ee
BLAKE2b-256 42675d06bbea07d85bdb0d85f382ac74762e0d21392a9c4012723839bff10cfe

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page