feat: add mcp-server-circleci MCP server package

[JAORMX]

Description

Add packaging for mcp-server-circleci v0.14.0, the official CircleCI MCP server for CI/CD operations.

Details

• Package: https://www.npmjs.com/package/@circleci/mcp-server-circleci
• Repository: https://github.com/CircleCI-Public/mcp-server-circleci
• Version: 0.14.0
• Protocol: npx (Node.js/npm)

Security Analysis

Thorough security scan analysis completed:

• W001 (Prompt Injection Warnings): 4 occurrences on tools that use CI/CD terminology

  • Tools affected: recommend_prompt_template_tests, rerun_workflow, find_underused_resource_classes, analyze_diff
  • These are false positives from legitimate CI/CD operation names

• TF001 (Data Leak Toxic Flow): Expected for CI/CD platforms

  • 13 tools can produce untrusted content (from external sources)
  • 10 tools can access private data (build logs, configs, secrets)
  • 3 tools can act as public sinks
  • This is inherent to CI/CD platforms bridging private repos with public build systems

• TF002 (Destructive Toxic Flow): Expected for CI/CD operations

  • 13 tools can produce untrusted content
  • 5 tools can perform destructive actions (run pipelines, cancel builds, modify configs)
  • These are legitimate CI/CD operations

Testing

• ✅ Build validation passed
• ✅ Security scan passed with properly justified allowlisted issues
• ✅ 16 tools scanned and analyzed

Related PRs

This completes the batch of MCP server packages being added to Dockyard.

[github-actions]

🔒 MCP Security Scan Results

✅ mcp-server-circleci

• Status: Passed
• Tools scanned: 16
• Result: No security issues detected

---

Summary: Scanned 1 MCP server(s), all passed security checks. ✅