Same door for humans and AI. No gatekeeper.Register →
Explorer/MCP/digicatalyst-systems/dep-diff-mcp
REMOTE

dep-diff-mcp

digicatalyst-systems/dep-diff-mcp

Translates a lockfile diff into a human-readable upgrade plan for npm and PyPI. Point this MCP at a Dependabot PR, lockfile diff, or any pair of package versions and get back a ranked upgrade plan. For every dependency bump it returns semver classification, breaking changes extracted from GitHub release notes, CVEs fixed in the range (via OSV.dev), migration guide links, and a per-package recommendation. Bulk tool analyzes up to 50 package changes in parallel and ranks by risk level (security > caution > review > likely-safe > safe). Supports npm and PyPI.

2 tools available
The Newcomer
Hasn't been around long. Nothing caught our attention, but there isn't much history to go on yet.
Time indexed (24d)
2toolsRemote/ HTTP24dindexed
100% uptime · 297ms avgChecked May 17, 2026
Quality Score
48/95
Established
Risk Score
0/100
Clean
How is this calculated?
Quality Breakdown
Tenure8.8/20
24 days indexed
Capability14.4/25
Tools: 2.4/13 (2 tools)
Description: 5/5
Endpoint: 7/7
Adoption0/25
Use count: 0/20 (0 uses)
Multi-registry: 0/5 (1 registry)
Reliability25/25
Currently live: 10/10
Uptime history: 15/15 100% (15/15 checks)
Security scan: 0 pts in v1.0; ready to weight when coverage improves
Incomplete Data Cap (60)
Usage data is not available for this server. Quality is capped until adoption can be measured.
Risk
0Clean
No signals detected.
The scanner shows
2 tools. Nothing caught our attention.
First indexed Apr 23, 2026
Server Profile
Tools catalogued
2
2 tools available. Full list below.
Hosting
Remote / HTTP
Runs on the internet. No access to your filesystem, SSH keys, or environment variables.
Registry presence
Not verified
Not yet verified by the Official MCP Registry.
Liveness
100%
Based on 48 checks. Average response: 297ms.
Publisher Verification
Not yet verified by the Official MCP Registry.
Endpoint
https://dep-diff-mcp--digicatalyst-systems.run.tools
Tools (2)
analyze_package_change
Given one package and two versions (from -> to), returns a structured upgrade analysis: semver classification, GitHub release notes summary, detected breaking changes, security advisories fixed in the range, migration guide links, and a clear recommendation. Use when the user asks about a specific package upgrade. Supports npm and pypi. For analyzing many packages at once, use analyze_packages_bulk instead.
analyze_packages_bulk
Analyzes a list of package upgrades in parallel and returns a unified risk report with packages ranked by recommendation level (security > caution > review > likely-safe > safe). Use when the user provides many dependency changes from a Dependabot PR, npm outdated output, lockfile diff, or batch upgrade. Returns: total count, breakdown by semver class, total security fixes found, packages with breaking changes, and per-package details. Limit 50 packages per call.

Is this your server?

Create a free RNWY account to connect your on-chain identity to this server. MCP server claiming is coming; register now and you'll be first in line.

Create your account →
More from digicatalyst-systems
io.github.DigiCatalyst-Systems/dep-diff-mcp
Translates a lockfile diff into a human-readable upgrade plan for npm and PyPI.
Similar servers
Press Release
press-release MCP — wraps StupidAPIs (requires X-API-Key)
Scream Void
scream-void MCP — wraps StupidAPIs (requires X-API-Key)
MCP Server for LimeSurvey
Enables interaction with LimeSurvey API to create and manage surveys, questions, question groups, activate surveys, and export responses through standardized MCP endpoints.
io.github.zenml-io/mcp-zenml
MCP server for ZenML - browse stacks, pipelines, runs, artifacts & trigger pipeline runs via API
Linear
Linear MCP — wraps the Linear GraphQL API (OAuth)
HAPI MCP Server
HAPI MCP server: Dynamically exposes OpenAPI REST APIs as MCP tools for AI assistants
Indexed from Smithery · Updates nightlyView on Smithery →