recourse-cli

MCP ServerFree

MCP server for AI agents to evaluate consequences before destructive actions. Analyzes Terraform plans, shell commands, and MCP tool calls.

Open Source

/ 100

8 capabilities

Capabilities8 decomposed

terraform plan consequence analysis with blast-radius estimation

Medium confidence

Parses Terraform execution plans (JSON format) to identify resource changes, dependencies, and potential blast radius. Analyzes which resources will be created, modified, or destroyed and traces downstream impacts through resource dependency graphs. Integrates with MCP protocol to expose analysis results to AI agents for decision-making before apply operations.

Solves for

Understand what infrastructure changes a Terraform plan will make before applying itIdentify which dependent resources might be affected by a planned resource deletionGet a summary of blast radius and risk level for a proposed infrastructure changePrevent accidental destruction of critical infrastructure by analyzing plan consequences

Best for

DevOps engineers using AI agents to manage infrastructure safely

Teams automating Terraform workflows with Claude or other LLM agents

Organizations requiring consequence analysis before infrastructure mutations

Requires

Terraform 0.12+ (for JSON plan format support)

MCP client compatible with recourse-cli server

Node.js 16+ runtime environment

Limitations

Requires Terraform plan in JSON format — does not parse HCL directly

Dependency analysis limited to explicit Terraform resource references; implicit dependencies (e.g., security group rules) may not be detected

Does not simulate actual AWS/cloud API behavior — analysis is static and based on plan structure

What makes it unique

Implements consequence analysis as an MCP server that integrates directly into AI agent workflows, allowing agents to query plan impacts before execution rather than analyzing plans post-hoc. Uses dependency graph traversal to estimate blast radius rather than simple resource counting.

vs alternatives

Provides real-time consequence analysis integrated into agent decision loops, whereas terraform plan alone requires manual interpretation and external tools like Checkov only perform policy checks, not impact analysis.

shell command consequence evaluation with side-effect prediction

Medium confidence

Analyzes shell commands (bash, sh, zsh) to predict side effects including file system mutations, process spawning, network calls, and environment variable changes. Uses pattern matching and AST-like parsing to identify dangerous operations (rm, dd, curl with sudo, etc.) and traces command chains to estimate overall system impact. Exposes findings through MCP tool interface for agent evaluation.

Solves for

Evaluate whether a shell command will have unintended side effects before executing itIdentify dangerous command patterns (recursive deletes, privilege escalation, network operations) in agent-generated scriptsGet a risk score for a shell command before allowing an agent to execute itUnderstand what files, processes, and network resources a command chain will touch

Best for

AI agents running shell commands in sandboxed or production environments

Teams implementing guardrails for agent-generated bash scripts

DevOps automation requiring consequence checks before destructive shell operations

Requires

Shell command as plain text input

MCP client to invoke analysis

Node.js 16+ runtime

Limitations

Static analysis only — cannot predict runtime behavior of complex scripts with conditionals or loops

Does not execute commands in a sandbox to observe actual side effects

Pattern-based detection may miss obfuscated dangerous operations (e.g., base64-encoded rm commands)

What makes it unique

Integrates shell command consequence analysis into MCP protocol, allowing AI agents to query command safety before execution. Uses pattern-based detection of dangerous operations combined with command chain tracing rather than full shell parsing.

vs alternatives

Provides agent-integrated safety checks for shell commands, whereas ShellCheck focuses on syntax/style issues and tools like audit-shell only log executed commands; recourse-cli enables preventive analysis before execution.

mcp tool call consequence validation with schema-aware impact assessment

Medium confidence

Validates MCP tool calls against their schemas and predicts consequences of tool execution based on tool metadata and parameter values. Analyzes tool definitions to identify which tools perform mutations, access sensitive resources, or have side effects. Evaluates whether a proposed tool call aligns with agent intent and flags potentially dangerous parameter combinations (e.g., delete with wildcard patterns).

Solves for

Validate that an MCP tool call matches its declared schema before allowing executionIdentify which MCP tools have side effects and which are read-onlyDetect dangerous parameter combinations in tool calls (e.g., force delete with broad selectors)Prevent agents from calling tools with parameters that could cause unintended consequences

Best for

AI agents using MCP servers with safety-critical tools

Teams building agent frameworks that need tool call validation layers

Organizations deploying agents with access to infrastructure or data mutation tools

Requires

MCP tool definitions with JSON schemas

Tool metadata including side-effect declarations

MCP client integration

Limitations

Consequence prediction limited to static analysis of tool schemas — cannot predict runtime behavior of tool implementations

Requires tool schemas to be well-documented with side-effect metadata; tools without clear schemas cannot be analyzed

Does not validate tool implementation correctness — only validates call structure and parameter types

What makes it unique

Extends MCP protocol with consequence validation layer that analyzes tool calls against schemas and side-effect metadata before execution. Uses schema introspection combined with parameter analysis to predict tool impacts.

vs alternatives

Provides schema-aware tool call validation integrated into MCP workflows, whereas generic schema validators only check type correctness; recourse-cli adds consequence prediction and side-effect analysis.

dependency graph analysis for infrastructure and resource relationships

Medium confidence

Builds and traverses dependency graphs from Terraform plans and MCP tool definitions to trace resource relationships and impact chains. Identifies direct dependencies (explicit resource references) and estimates transitive impacts when resources are modified or deleted. Generates visual or textual representations of dependency chains to help agents understand cascading effects.

Solves for

Understand which resources depend on a resource I'm about to deleteTrace the full impact chain when modifying a critical infrastructure componentIdentify circular dependencies or problematic resource relationshipsGet a dependency tree visualization for a Terraform plan

Best for

Infrastructure teams managing complex multi-resource deployments

Agents making infrastructure decisions that require understanding of resource relationships

Organizations with large Terraform codebases needing impact analysis

Requires

Terraform plan in JSON format or MCP tool definitions

Graph traversal library (included in recourse-cli)

Node.js 16+ runtime

Limitations

Dependency analysis limited to explicit references in Terraform — implicit dependencies (e.g., DNS names, IP addresses) not detected

Does not analyze cross-stack dependencies in multi-stack deployments

Circular dependency detection may not catch all edge cases in complex graphs

What makes it unique

Implements dependency graph analysis as part of MCP server, allowing agents to query resource relationships and impact chains dynamically. Uses graph traversal algorithms to estimate transitive impacts rather than simple reference counting.

vs alternatives

Provides dynamic dependency analysis integrated into agent workflows, whereas static Terraform visualization tools only show structure; recourse-cli enables agents to query impacts for specific change scenarios.

risk scoring and consequence severity classification

Medium confidence

Assigns risk scores and severity classifications to proposed actions (Terraform changes, shell commands, tool calls) based on impact type, blast radius, and resource criticality. Uses a scoring model that considers factors like number of affected resources, whether changes are reversible, and whether critical infrastructure is involved. Provides severity labels (low, medium, high, critical) to help agents make informed decisions.

Solves for

Get a risk score for a proposed infrastructure changeClassify the severity of a shell command before executionUnderstand whether a consequence is reversible or permanentMake informed decisions about whether to proceed with a risky action

Best for

AI agents requiring quantitative risk assessment before executing actions

Teams implementing approval workflows based on risk levels

Organizations with risk tolerance policies that need automated enforcement

Requires

Consequence analysis output (from Terraform, shell, or tool analysis)

Risk scoring configuration (uses defaults if not provided)

Node.js 16+ runtime

Limitations

Risk scoring model is heuristic-based and may not reflect actual organizational risk tolerance

Does not account for business context or criticality of specific resources

Severity classification is relative and may need tuning per organization

What makes it unique

Implements quantitative risk scoring for infrastructure and command consequences as part of MCP server, enabling agents to make risk-aware decisions. Uses multi-factor scoring model considering impact scope, reversibility, and resource criticality.

vs alternatives

Provides automated risk scoring integrated into agent workflows, whereas manual risk assessment is subjective and time-consuming; recourse-cli enables consistent, quantitative risk evaluation.

mcp protocol server implementation with tool exposure

Medium confidence

Implements a Model Context Protocol (MCP) server that exposes consequence analysis capabilities as MCP tools callable by AI agents. Handles MCP protocol communication, tool registration, parameter marshaling, and result serialization. Allows agents to invoke consequence analysis tools through standard MCP client interfaces without direct library imports.

Solves for

Integrate consequence analysis into an AI agent using MCP protocolCall consequence analysis tools from Claude or other MCP-compatible agentsExpose consequence analysis as a service that multiple agents can accessUse recourse-cli without modifying agent code

Best for

Teams building AI agents that use MCP for tool integration

Organizations deploying recourse-cli as a shared service for multiple agents

Developers integrating consequence analysis into existing MCP-based workflows

Requires

MCP client compatible with recourse-cli (e.g., Claude with MCP support)

Node.js 16+ runtime

Network connectivity between agent and MCP server

Limitations

Requires MCP client support — not compatible with agents that don't support MCP

MCP protocol overhead adds latency compared to direct library calls (~50-200ms per request)

Tool invocation is asynchronous — agents must handle async tool calls

What makes it unique

Implements full MCP server for consequence analysis, exposing all capabilities through standard MCP tool interface. Handles protocol-level concerns (serialization, async communication, error handling) transparently.

vs alternatives

Provides MCP-native integration for consequence analysis, whereas library-based approaches require code changes; recourse-cli enables drop-in integration via MCP protocol.

multi-format input parsing for terraform, shell, and tool definitions

Medium confidence

Parses multiple input formats including Terraform JSON plans, shell command text, and MCP tool definition schemas. Uses format-specific parsers to extract relevant information (resource changes, command operations, tool metadata) and normalize into internal representations for analysis. Handles format variations and provides clear error messages for malformed inputs.

Solves for

Analyze Terraform plans without manual format conversionEvaluate shell commands provided as plain textValidate MCP tool calls with schema-aware parsingSupport multiple input formats in a single analysis request

Best for

Teams working with multiple infrastructure and automation tools

Agents that need to analyze diverse action types (infrastructure, shell, tool calls)

Organizations with heterogeneous tooling stacks

Requires

Input in supported format (Terraform JSON, shell text, MCP schema JSON)

Node.js 16+ runtime

Limitations

Terraform parser requires valid JSON format — does not parse HCL directly

Shell parser uses pattern matching and may not handle all shell syntax variations

Tool definition parser requires JSON schemas — does not infer schemas from tool implementations

What makes it unique

Implements unified parsing layer that handles multiple input formats (Terraform, shell, MCP) with format-specific logic, normalizing diverse inputs into common analysis representations.

vs alternatives

Provides single tool for analyzing multiple action types, whereas separate tools require format conversion and orchestration; recourse-cli handles parsing and normalization transparently.

reversibility assessment and data loss risk detection

Medium confidence

Analyzes operations to determine whether changes are reversible and identifies operations that could cause permanent data loss. Classifies operations as reversible (can be undone via backup/rollback), partially reversible (some data recoverable), or irreversible (permanent loss). Detects high-risk patterns like database deletions, encryption key destruction, and unbackup'd resource removal.

Solves for

Identify operations that could cause permanent data loss before executionDistinguish between reversible changes (can be rolled back) and irreversible destructive operationsRequire additional approval for irreversible operations in approval workflowsAssess whether backup/recovery procedures exist before executing destructive operations

Best for

Teams managing stateful infrastructure with data loss risk

Organizations implementing strict change control for production systems

Compliance-focused teams requiring data protection assurances

Requires

Operation details (Terraform plan, shell command, or MCP call)

Optional: backup/recovery configuration metadata

Limitations

Reversibility assessment is heuristic-based — cannot guarantee actual recoverability

Does not verify backup existence or integrity — only assesses theoretical reversibility

Cannot account for backup retention policies or recovery time objectives

What makes it unique

Specifically analyzes reversibility and data loss risk across Terraform, shell, and MCP domains, enabling consistent data protection policies regardless of operation type

vs alternatives

More focused on data loss prevention than generic consequence analysis tools; provides explicit reversibility classification to inform approval decisions

Capabilities are decomposed by AI analysis. Each maps to specific user intents and improves with match feedback.

Related Artifactssharing capabilities

Artifacts that share capabilities with recourse-cli, ranked by overlap. Discovered automatically through the match graph.

CLI Tool33

agentseal

Security toolkit for AI agents. Scan your machine for dangerous skills and MCP configs, monitor for supply chain attacks, test prompt injection resistance, and audit live MCP servers for tool poisoning.

mcp-configuration-validationlive-mcp-server-tool-poisoning-audit

2 shared capabilities

Product26

StarOps

AI Platform...

infrastructure change impact analysis and blast radius prediction

1 shared capability

MCP Server23

@mcp-contracts/core

Snapshot, diff, and classify MCP tool schema changes

schema change impact analysis and reporting

1 shared capability

Agent46

Cleric

Autonomously triages and roots cause alerts in complex...

service-dependency-impact-analysis

1 shared capability

MCP Server23

@pshkv/mcp-scanner

SINT MCP Security Scanner — analyze MCP server tool definitions for risk

tool parameter validation and schema enforcement

1 shared capability

Product38

code-review-graph

Local knowledge graph for Claude Code. Builds a persistent map of your codebase so Claude reads only what matters — 6.8× fewer tokens on reviews and up to 49× on daily coding tasks.

blast-radius impact analysis with dependency graph traversal

1 shared capability

Best For

✓DevOps engineers using AI agents to manage infrastructure safely
✓Teams automating Terraform workflows with Claude or other LLM agents
✓Organizations requiring consequence analysis before infrastructure mutations
✓AI agents running shell commands in sandboxed or production environments
✓Teams implementing guardrails for agent-generated bash scripts
✓DevOps automation requiring consequence checks before destructive shell operations
✓AI agents using MCP servers with safety-critical tools
✓Teams building agent frameworks that need tool call validation layers

Known Limitations

⚠Requires Terraform plan in JSON format — does not parse HCL directly
⚠Dependency analysis limited to explicit Terraform resource references; implicit dependencies (e.g., security group rules) may not be detected
⚠Does not simulate actual AWS/cloud API behavior — analysis is static and based on plan structure
⚠No support for Terraform modules with dynamic resource counts without explicit plan output
⚠Static analysis only — cannot predict runtime behavior of complex scripts with conditionals or loops
⚠Does not execute commands in a sandbox to observe actual side effects

Requirements

Terraform 0.12+ (for JSON plan format support)MCP client compatible with recourse-cli serverNode.js 16+ runtime environmentShell command as plain text inputMCP client to invoke analysisNode.js 16+ runtimeMCP tool definitions with JSON schemasTool metadata including side-effect declarations

Input / Output

Accepts: terraform-plan-json, structured-terraform-state, shell-command-text, bash-script-text, command-chain-text, mcp-tool-call-json, tool-schema-json, parameter-values-json, mcp-tool-definitions-json, resource-relationship-data, consequence-analysis-json, resource-impact-data, action-metadata, mcp-protocol-messages, mcp-tool-schema-json, terraform plan JSON, shell command string, MCP tool call with parameters

Produces: consequence-analysis-json, blast-radius-summary, risk-assessment-text, side-effect-analysis-json, risk-score-numeric, dangerous-operation-list, validation-result-json, consequence-assessment-text, risk-flags-array, dependency-graph-json, impact-chain-text, circular-dependency-list, severity-label-text, risk-justification-text, mcp-tool-result-json, mcp-protocol-responses, normalized-analysis-input, parsed-structure-json, format-validation-result, reversibility classification (enum: reversible/partially-reversible/irreversible), data loss risk assessment (text), recommended mitigation steps (text)

UnfragileRank

Adoption5%(25% weight)

Quality31%(25% weight)

Ecosystem50%(15% weight)

Match Graph25%(30% weight)

Freshness75%(5% weight)

UnfragileRank is computed from adoption signals, documentation quality, ecosystem connectivity, match graph feedback, and freshness. No artifact can pay for a higher rank.

Type: MCP Server

8 capabilities

Visit recourse-cli→

Package Details

npm

Registry

0.1.17

Version

Weekly Downloads

About

MCP server for AI agents to evaluate consequences before destructive actions. Analyzes Terraform plans, shell commands, and MCP tool calls.

Alternatives to recourse-cli

GitHub Copilot70Extension

Your AI pair programmer

Compare →

Supabase69Platform

Search the Supabase docs for up-to-date guidance and troubleshoot errors quickly. Manage organizations, projects, databases, and Edge Functions, including migrations, SQL, logs, advisors, keys, and type generation, in one flow. Create and manage development branches to iterate safely, confirm costs

Compare →

langchain63Framework

Typescript bindings for langchain

Compare →

ChatGPT62Extension

GPT-4,Key-free,Free of charge,免Key,免魔法,免注册,免费

Compare →

Are you the builder of recourse-cli?

Claim this artifact to get a verified badge, access match analytics, see which intents users search for, and manage your listing.

Claim this artifact →Verification via email

Get the weekly brief

New tools, rising stars, and what's actually worth your time. No spam.

Data Sources

mcp registry

Looking for something else?

Search →

Capabilities8 decomposed

terraform plan consequence analysis with blast-radius estimation

Medium confidence

Solves for

Best for

DevOps engineers using AI agents to manage infrastructure safely

Teams automating Terraform workflows with Claude or other LLM agents

Organizations requiring consequence analysis before infrastructure mutations

Requires

Terraform 0.12+ (for JSON plan format support)

MCP client compatible with recourse-cli server

Node.js 16+ runtime environment

Limitations

Requires Terraform plan in JSON format — does not parse HCL directly

Dependency analysis limited to explicit Terraform resource references; implicit dependencies (e.g., security group rules) may not be detected

Does not simulate actual AWS/cloud API behavior — analysis is static and based on plan structure

What makes it unique

vs alternatives

shell command consequence evaluation with side-effect prediction

Medium confidence

Solves for

Best for

AI agents running shell commands in sandboxed or production environments

Teams implementing guardrails for agent-generated bash scripts

DevOps automation requiring consequence checks before destructive shell operations

Requires

Shell command as plain text input

MCP client to invoke analysis

Node.js 16+ runtime

Limitations

Static analysis only — cannot predict runtime behavior of complex scripts with conditionals or loops

Does not execute commands in a sandbox to observe actual side effects

Pattern-based detection may miss obfuscated dangerous operations (e.g., base64-encoded rm commands)

What makes it unique

vs alternatives

mcp tool call consequence validation with schema-aware impact assessment

Medium confidence

Solves for

Best for

AI agents using MCP servers with safety-critical tools

Teams building agent frameworks that need tool call validation layers

Organizations deploying agents with access to infrastructure or data mutation tools

Requires

MCP tool definitions with JSON schemas

Tool metadata including side-effect declarations

MCP client integration

Limitations

Consequence prediction limited to static analysis of tool schemas — cannot predict runtime behavior of tool implementations

Requires tool schemas to be well-documented with side-effect metadata; tools without clear schemas cannot be analyzed

Does not validate tool implementation correctness — only validates call structure and parameter types

What makes it unique

vs alternatives

dependency graph analysis for infrastructure and resource relationships

Medium confidence

Solves for

Best for

Infrastructure teams managing complex multi-resource deployments

Agents making infrastructure decisions that require understanding of resource relationships

Organizations with large Terraform codebases needing impact analysis

Requires

Terraform plan in JSON format or MCP tool definitions

Graph traversal library (included in recourse-cli)

Node.js 16+ runtime

Limitations

Dependency analysis limited to explicit references in Terraform — implicit dependencies (e.g., DNS names, IP addresses) not detected

Does not analyze cross-stack dependencies in multi-stack deployments

Circular dependency detection may not catch all edge cases in complex graphs

What makes it unique

vs alternatives

risk scoring and consequence severity classification

Medium confidence

Solves for

Best for

AI agents requiring quantitative risk assessment before executing actions

Teams implementing approval workflows based on risk levels

Organizations with risk tolerance policies that need automated enforcement

Requires

Consequence analysis output (from Terraform, shell, or tool analysis)

Risk scoring configuration (uses defaults if not provided)

Node.js 16+ runtime

Limitations

Risk scoring model is heuristic-based and may not reflect actual organizational risk tolerance

Does not account for business context or criticality of specific resources

Severity classification is relative and may need tuning per organization

What makes it unique

vs alternatives

Provides automated risk scoring integrated into agent workflows, whereas manual risk assessment is subjective and time-consuming; recourse-cli enables consistent, quantitative risk evaluation.

mcp protocol server implementation with tool exposure

Medium confidence

Solves for

Best for

Teams building AI agents that use MCP for tool integration

Organizations deploying recourse-cli as a shared service for multiple agents

Developers integrating consequence analysis into existing MCP-based workflows

Requires

MCP client compatible with recourse-cli (e.g., Claude with MCP support)

Node.js 16+ runtime

Network connectivity between agent and MCP server

Limitations

Requires MCP client support — not compatible with agents that don't support MCP

MCP protocol overhead adds latency compared to direct library calls (~50-200ms per request)

Tool invocation is asynchronous — agents must handle async tool calls

What makes it unique

vs alternatives

Provides MCP-native integration for consequence analysis, whereas library-based approaches require code changes; recourse-cli enables drop-in integration via MCP protocol.

multi-format input parsing for terraform, shell, and tool definitions

Medium confidence

Solves for

Best for

Teams working with multiple infrastructure and automation tools

Agents that need to analyze diverse action types (infrastructure, shell, tool calls)

Organizations with heterogeneous tooling stacks

Requires

Input in supported format (Terraform JSON, shell text, MCP schema JSON)

Node.js 16+ runtime

Limitations

Terraform parser requires valid JSON format — does not parse HCL directly

Shell parser uses pattern matching and may not handle all shell syntax variations

Tool definition parser requires JSON schemas — does not infer schemas from tool implementations

What makes it unique

Implements unified parsing layer that handles multiple input formats (Terraform, shell, MCP) with format-specific logic, normalizing diverse inputs into common analysis representations.

vs alternatives

Provides single tool for analyzing multiple action types, whereas separate tools require format conversion and orchestration; recourse-cli handles parsing and normalization transparently.

reversibility assessment and data loss risk detection

Medium confidence

Solves for

Best for

Teams managing stateful infrastructure with data loss risk

Organizations implementing strict change control for production systems

Compliance-focused teams requiring data protection assurances

Requires

Operation details (Terraform plan, shell command, or MCP call)

Optional: backup/recovery configuration metadata

Limitations

Reversibility assessment is heuristic-based — cannot guarantee actual recoverability

Does not verify backup existence or integrity — only assesses theoretical reversibility

Cannot account for backup retention policies or recovery time objectives

What makes it unique

Specifically analyzes reversibility and data loss risk across Terraform, shell, and MCP domains, enabling consistent data protection policies regardless of operation type

vs alternatives

More focused on data loss prevention than generic consequence analysis tools; provides explicit reversibility classification to inform approval decisions

Capabilities are decomposed by AI analysis. Each maps to specific user intents and improves with match feedback.

Alternatives to recourse-cli

GitHub Copilot70Extension

Your AI pair programmer

Compare →

Supabase69Platform

Compare →

langchain63Framework

Typescript bindings for langchain

Compare →

ChatGPT62Extension

GPT-4,Key-free,Free of charge,免Key,免魔法,免注册,免费

Compare →

recourse-cli

Capabilities8 decomposed

terraform plan consequence analysis with blast-radius estimation

shell command consequence evaluation with side-effect prediction

mcp tool call consequence validation with schema-aware impact assessment

dependency graph analysis for infrastructure and resource relationships

risk scoring and consequence severity classification

mcp protocol server implementation with tool exposure

multi-format input parsing for terraform, shell, and tool definitions

reversibility assessment and data loss risk detection

Related Artifactssharing capabilities

agentseal

StarOps

@mcp-contracts/core

Cleric

@pshkv/mcp-scanner

code-review-graph

Best For

Known Limitations

Requirements

Input / Output

UnfragileRank

Package Details

About

Categories

Alternatives to recourse-cli

Are you the builder of recourse-cli?

Get the weekly brief

Data Sources

recourse-cli

Capabilities8 decomposed

terraform plan consequence analysis with blast-radius estimation

shell command consequence evaluation with side-effect prediction

mcp tool call consequence validation with schema-aware impact assessment

dependency graph analysis for infrastructure and resource relationships

risk scoring and consequence severity classification

mcp protocol server implementation with tool exposure

multi-format input parsing for terraform, shell, and tool definitions

reversibility assessment and data loss risk detection

Related Artifactssharing capabilities

agentseal

StarOps

@mcp-contracts/core

Cleric

@pshkv/mcp-scanner

code-review-graph

Best For

Known Limitations

Requirements

Input / Output

UnfragileRank

Package Details

About

Categories

Alternatives to recourse-cli

Are you the builder of recourse-cli?

Get the weekly brief

Data Sources