npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

mcphawk

v1.0.1

Published

Transparent stdio proxy for MCP servers. Live timeline, SQLite log, replay. Zero config.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jay-doshijay-doshi

Keywords

mcpmodel-context-protocolobservabilitydebuggerproxyjson-rpc

Readme

mcphawk

Transparent stdio proxy for MCP servers. See every JSON-RPC call your agent makes, capture it to SQLite, and replay it later. Zero config. Works with any MCP server.

Think mitmproxy, but for the Model Context Protocol.

Quickstart

npx mcphawk -- node my-server.js

Then open http://localhost:4800.

That's it — no SDK, no config file, no code change in the wrapped server. The MCP client (Claude, Cursor, etc.) talks to mcphawk as if it were the server, and the server runs unchanged.

Install

npm install -g mcphawk

Requires Node 20+. Also runs under Bun (bunx mcphawk ...).

Use with Claude Desktop

You almost certainly want to drop mcphawk in front of an MCP server you've already registered in Claude Desktop. Find the config:

  • macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
  • Windows: %APPDATA%\Claude\claude_desktop_config.json

Wrap the existing entry. Before:

{
  "mcpServers": {
    "my-server": {
      "command": "node",
      "args": ["/path/to/server.js"]
    }
  }
}

After:

{
  "mcpServers": {
    "my-server": {
      "command": "npx",
      "args": ["mcphawk", "--", "node", "/path/to/server.js"]
    }
  }
}

Restart Claude Desktop, open http://localhost:4800, chat normally, and every tool call streams into the timeline.

Same pattern works for Cursor, Continue, and anything else that spawns an MCP server over stdio.

What you get

  • Live timeline — every JSON-RPC frame in both directions, with tool names, latency, and error codes
  • Replay — click any request, hit Replay, see how the server answers right now versus how it answered when the call was captured
  • SQLite log — every frame persisted to ./observe.db. Query with the sqlite3 CLI or any client
  • Secret redaction — Bearer tokens, OpenAI/Anthropic keys, AWS keys, JWTs, and password/api_key/token JSON fields masked before they hit disk
  • Risky-tool warnings — flags tools/call invocations whose name or arguments look like rm -rf, sudo, drop table, etc.
  • OTLP exportmcphawk export --format=otel produces OpenTelemetry traces ready to ship to any backend that speaks OTLP

More examples

# wrap a python server
mcphawk -- python my_server.py

# wrap an npm-published server
mcphawk -- npx -y @modelcontextprotocol/server-filesystem /Users/me/docs

# wrap a bun script
mcphawk -- bun run server.ts

# log only, no dashboard
mcphawk --no-dashboard -- node my-server.js

# custom port and database path
mcphawk --port 5001 --db ./debug.db -- node my-server.js

Options

| Flag | Default | What it does | | ------------------ | -------------- | --------------------------------------- | | --port <n> | 4800 | Dashboard HTTP port | | --db <path> | ./observe.db | SQLite file location | | --no-dashboard | off | Skip the dashboard, log to SQLite only | | --no-redact | off | Disable secret redaction before storage | | --no-risky-check | off | Silence risky tool/argument warnings | | --quiet | off | Suppress info logs | | -h, --help | — | Show help |

Export

mcphawk export reads a database file and writes either a raw JSON array of rows or an OpenTelemetry OTLP trace JSON.

mcphawk export --format=json --out trace.json
mcphawk export --format=otel --out trace.otlp.json
mcphawk export --format=json --session <uuid>

Query the SQLite log

The dashboard is for live work. The SQLite file is the permanent record — useful for post-mortems and metrics.

sqlite3 ./observe.db

A few starter queries live in docs/sql-recipes.md.

How it works

mcphawk spawns the wrapped command as a child process with piped stdio. It reads from its own stdin (whatever the MCP client writes), parses newline-delimited JSON-RPC frames, logs them, and forwards each chunk unchanged to the child's stdin. Same flow in reverse for the child's stdout. Neither side notices the middleman.

The dashboard is a small Express server with a WebSocket that streams every logged row to a Vite/React UI. The replay engine spawns a fresh copy of the same wrapped command, writes the captured JSON-RPC request to its stdin, waits for a matching response on stdout, and returns both. No state from the original session leaks in.

Docs

Development

git clone https://github.com/jay01D/mcphawk
cd mcphawk
npm install
npm run build
npm test

Run the proxy from source against a fake MCP server fixture:

npm run dev -- -- npx tsx test/fixtures/fakeMcpServer.ts

License

MIT