A periscope for your repos - read-only MCP server for sibling repository context
Project description
Repiscope
A periscope for your repos — see everything, touch nothing.
Repiscope is a read-only MCP server that gives your coding agent (Claude Code, Cursor, or any MCP client) awareness of the sibling repositories next to the one it's working in — without ever letting it modify them.
Why
When you run a coding agent inside project A, sometimes it needs to know how you solved something in project B. Opening project B to the agent is scary: it might start editing files there. Telling it "don't touch anything" is a request. Repiscope makes it a guarantee: the server exposes zero write tools, so the agent structurally cannot modify your other repos.
See it in action
You're working in project-a and your agent needs to know how you handled
auth in another project. Instead of you copy-pasting files, the agent asks
Repiscope directly:
You: How did I do JWT refresh in my other API project?
Agent: (calls list_projects → sees "billing-api")
(calls search "refresh_token" project="billing-api")
(calls read_file "billing-api" "src/auth/tokens.py")
In billing-api you rotate the refresh token on every use and
store the previous hash for a 60s grace window — here's the
pattern, adapted for project-a:
...
The agent read three files in a repo it has no ability to write to. No copy-paste, no "please don't edit anything," no risk.
Tools
| Tool | Input | Returns |
|---|---|---|
list_projects() |
— | every sibling repo + one-line description |
project_overview(project) |
repo name | full overview: purpose, stack, structure, recent commits |
search(query, project?) |
text, optional repo | files & lines matching the query |
read_file(project, path) |
repo + file path | full file contents (size-capped) |
store_summary(project, summary) |
repo + your text | caches an agent-written summary (see below) |
How it stays fresh
Overviews are cached as markdown and refreshed lazily: on each call Repiscope compares the repo's current git commit hash against the one recorded when the overview was built. Same hash → serve the cache. Different → rebuild just that repo's overview. No cron, no daemons.
Borrowed intelligence
Repiscope has no LLM of its own — no API key, no model calls, zero cost. But
it talks to LLMs all day, so it borrows them: when an overview has no fresh
agent-written summary, it ends with a note asking the calling agent to
write one and hand it back via store_summary. The summary then opens every
future overview of that project — written by one agent, read by all the
next — until the repo's next commit marks it outdated and the cycle repeats.
Security by architecture
Repiscope is built so that the safe behaviour is not a promise — it's the only behaviour possible:
- Zero repo-write tools. The server exposes no tool that can create,
edit or delete anything inside your repositories. The one tool that
accepts data,
store_summary, can only write to Repiscope's own cache in~/.cache/repiscope. An agent cannot misuse a capability that doesn't exist. - Secrets are invisible. A single filter (
privacy.py) is enforced by every tool: private keys, certificates (.pem,.pfx,.p12, …),.env*files, keystores, and anything named like a credential never appear in overviews, trees, search results or file reads. Honest limit: the filter hides sensitive files — it does not scrub mentions of e.g. a password pasted inside an ordinary text file. - You define the perimeter. Repiscope only sees the folder you
explicitly pass (
--root), and--excludemakes chosen repos fully invisible — they can't even be resolved by name. - It leaves no trace. Overview caches live in
~/.cache/repiscope, never inside your repositories.
Quick start
git clone https://github.com/3xpr1ment/repiscope.git
cd repiscope
python -m venv .venv && .venv/bin/pip install -e .
Register it with your MCP client — for Claude Code:
claude mcp add repiscope --scope user -- \
/path/to/repiscope/.venv/bin/repiscope --root ~/your/projects/folder
Optionally hide repos with --exclude repo-a --exclude repo-b.
Status
v1.5 — working and dogfooded daily. Four read-only tools plus borrowed-LLM summaries, lazy cache refresh, sensitive-file filtering. No tests yet; API may still change.
License
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file repiscope-0.2.1.tar.gz.
File metadata
- Download URL: repiscope-0.2.1.tar.gz
- Upload date:
- Size: 15.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
c7d0ebb8b5b5cae4caf099b4b61d81873b5896306266d875a97a6997a29750d1
|
|
| MD5 |
e5afabdb367d9f29b401e59221a2d12d
|
|
| BLAKE2b-256 |
bc693229cea1d9870542b143321f4a54e5dc4f0b587f272ae07fe24f5636fd16
|
File details
Details for the file repiscope-0.2.1-py3-none-any.whl.
File metadata
- Download URL: repiscope-0.2.1-py3-none-any.whl
- Upload date:
- Size: 13.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.14.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
bb3eaeb120c66d58bd8d6a6a49d89d7449eb483ef457c18bf5acdb9d056e7b14
|
|
| MD5 |
00abd4c276516488b25b1ba3ccb8f7ee
|
|
| BLAKE2b-256 |
42675d06bbea07d85bdb0d85f382ac74762e0d21392a9c4012723839bff10cfe
|