publish pipe

pranavcodeant · pranavcodeant · commit bd57542b36c1 · 2026-05-21T17:25:28.000+05:30
diff --git a/.claude-plugin/marketplace.json b/.claude-plugin/marketplace.json
@@ -0,0 +1,37 @@
+{
+  "name": "codeant-cli",
+  "owner": {
+    "name": "CodeAnt AI",
+    "email": "support@codeant.ai"
+  },
+  "metadata": {
+    "description": "CodeAnt AI CLI and MCP server — org-wide secret triage, cross-repo SAST/SCA findings, on-demand scans, and local PR review inside Claude.",
+    "version": "0.4.14"
+  },
+  "plugins": [
+    {
+      "name": "codeant",
+      "source": "./.",
+      "description": "Drive CodeAnt AI from inside Claude Code via the CodeAnt MCP server. Read-only by default; write tools (trigger scan, resolve PR thread) gated behind CODEANT_READ_ONLY=0.",
+      "version": "0.4.14",
+      "author": {
+        "name": "CodeAnt AI",
+        "email": "support@codeant.ai"
+      },
+      "homepage": "https://codeant.ai",
+      "repository": "https://github.com/CodeAnt-AI/codeant-cli",
+      "license": "MIT",
+      "keywords": [
+        "code-review",
+        "pull-requests",
+        "security",
+        "secrets",
+        "sast",
+        "sca",
+        "static-analysis",
+        "mcp"
+      ],
+      "category": "code-quality"
+    }
+  ]
+}
diff --git a/.claude-plugin/plugin.json b/.claude-plugin/plugin.json
@@ -0,0 +1,26 @@
+{
+  "name": "codeant",
+  "version": "0.4.14",
+  "description": "CodeAnt AI MCP server inside Claude Code — org-wide secret triage, cross-repo SAST/SCA findings, on-demand scans, and local PR review.",
+  "author": {
+    "name": "CodeAnt AI",
+    "email": "support@codeant.ai"
+  },
+  "homepage": "https://codeant.ai",
+  "documentation": "https://docs.codeant.ai/cli/claude-code-plugin",
+  "repository": "https://github.com/CodeAnt-AI/codeant-cli",
+  "license": "MIT",
+  "keywords": [
+    "code-review",
+    "pull-requests",
+    "security",
+    "secrets",
+    "sast",
+    "sca",
+    "static-analysis",
+    "mcp"
+  ],
+  "prerequisites": {
+    "commands": ["codeant"]
+  }
+}
diff --git a/.github/workflows/publish-mcpb.yml b/.github/workflows/publish-mcpb.yml
@@ -0,0 +1,40 @@
+name: Publish MCPB Bundle
+
+on:
+  push:
+    branches:
+      - main
+  workflow_dispatch:
+
+jobs:
+  publish-mcpb:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+
+      - id: version
+        run: echo "version=$(jq -r .version mcpb/manifest.json)" >> "$GITHUB_OUTPUT"
+
+      - run: npm ci
+
+      - run: npm run mcpb:build
+
+      - uses: softprops/action-gh-release@v2
+        with:
+          tag_name: mcpb-v${{ steps.version.outputs.version }}
+          name: CodeAnt MCPB v${{ steps.version.outputs.version }}
+          files: dist/codeant.mcpb
+          fail_on_unmatched_files: true
+          body: |
+            CodeAnt MCPB bundle v${{ steps.version.outputs.version }}
+
+            Commit: ${{ github.sha }}
+            Message: ${{ github.event.head_commit.message }}
+
+            Install instructions: https://github.com/CodeAnt-AI/codeant-cli/blob/main/mcp.md
diff --git a/.mcp.json b/.mcp.json
@@ -0,0 +1,11 @@
+{
+  "mcpServers": {
+    "codeant": {
+      "command": "codeant",
+      "args": ["mcp"],
+      "env": {
+        "CODEANT_READ_ONLY": "1"
+      }
+    }
+  }
+}
diff --git a/mcpb/icon.png b/mcpb/icon.png
diff --git a/mcpb/manifest.json b/mcpb/manifest.json
@@ -2,7 +2,7 @@
   "manifest_version": "0.3",
   "name": "codeant",
   "display_name": "CodeAnt AI",
-  "version": "0.6.0",
+  "version": "0.5.0",
   "description": "Drive CodeAnt AI security scans and code review from Claude — org-wide secret triage, cross-repo SAST/SCA findings, on-demand scans, and local PR review.",
   "long_description": "CodeAnt AI inside Claude. Ask things like \"how many critical SAST findings do I have across my org?\", \"show every exposed secret in payments-service\", or \"review my staged changes\" — Claude calls the CodeAnt API directly via this MCP server.\n\nIncludes 11 read-only tools (orgs, repos, scan history, scan metadata, findings, dismissed alerts, PRs, comments, comment search, local review) and 2 opt-in write tools (trigger a scan, resolve a PR conversation) gated behind a setting.\n\nRequires a CodeAnt account. Sign up at https://codeant.ai and grab an API key from your settings page.",
   "author": {
