New tools (8 → 12 total):
- compare_versions(from, to): diff Claude Code releases between two versions,
aggregating highlights and breaking changes across the range
- get_threat(id): look up any CVE or attack technique (T-code) with full details,
severity, mitigation, and source references
- list_threats(category?): browse the threat database — summary table or
detailed view by section (cves, authors, skills, techniques, mitigations, sources)
- search_examples(query, limit?): semantic search across 199 templates with
token-aware scoring and get_example() hints
Infrastructure:
- content.ts: add loadThreatDb() with memory cache and dual-mode loading
(GUIDE_ROOT filesystem in dev, GitHub fetch in production)
- Threat DB interface with correct Record<string, string> type for minimum_safe_versions
Docs:
- mcp-server/README.md: document all 12 tools with usage examples
- mcp-server/IDEAS.md: future ideas (quiz, methodology, workflow, diff resource)
- CHANGELOG.md: [Unreleased] entry for all 4 tools
- README.md: promote MCP section to standalone ## after Quick Start (was ### inside Quick Start)
- guide/architecture.md: add MCP server to Extended Tool Ecosystem
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
