Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
MUMPS.cz is a MUMPS/M technology consulting and advanced tooling site from IDEA Systems. It is aimed at helping MUMPS/M systems still running in critical environments such as healthcare, finance, and government perform security scanning, static analysis, and modernized development. The page mainly highlights two products: mHawk, a security and code intelligence tool, and mSpark, a pure M application framework.
mHawk is a SAST engine for MUMPS/M, supporting YottaDB and GT.M, with dialect profiles for InterSystems Caché/IRIS. It includes 4 taint-analysis rules and 32 diagnostic rules, identifying data flows from READ/HTTP sources to dangerous sinks such as XECUTE, OPEN, indirection, and global dispatch. It can also detect issues such as duplicate labels, unresolved references, and unreachable code. Output formats include SARIF v2.1.0 and GitLab SAST JSON, with integration into GitLab Security Dashboard, GitHub, and SonarQube, as well as HTML call graph generation. For developer experience, it supports go-to-definition, reference search, and autocomplete in VS Code and NeoVim, and provides Claude Code MCP integration.
mSpark, meanwhile, is an application framework focused on building production systems in pure M. It includes an HTTP server, zero-downtime reload, JWT, middleware, JSON/XML/YAML support, unit testing, coverage, Cucumber/Gherkin, Entity Schema DSL, an SQL query engine, PostgreSQL wire protocol, and OpenAPI generation.
The page does not disclose pricing, licensing model, trial availability, or payment methods. Deployment information is relatively clear: the tools can run on existing infrastructure and are available as a single static Rust binary, Docker/Podman container images, and a Nix flake. mSpark has no external runtime and runs in a YottaDB environment.
The main advantage is its extremely precise positioning: it fills gaps in the MUMPS/M ecosystem around security scanning, CI integration, editor intelligence, and framework-based development. Its output formats are compatible with mainstream DevSecOps platforms, making it suitable for compliance audits. The downside is the lack of commercial information: it does not clarify whether the products are open source, what SLA or support tiers are available, or where to find full product documentation. Procurement evaluation will likely require contacting the vendor.
It is suitable for enterprise teams maintaining YottaDB, GT.M, or Caché/IRIS production systems, especially organizations that need compliance-oriented SAST, legacy code understanding, and DevSecOps integration. The page does not make it possible to judge access performance from China, and payment methods are not disclosed. If you only need general-purpose language security scanning, you can compare it with SonarQube, Semgrep, CodeQL, and GitHub Advanced Security; however, alternatives may be limited when it comes to dedicated MUMPS/M capabilities.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on mumps.cz official site.
mumps.cz is an Czechia Dev Tools provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of Workable. Click "Visit Official Site" to reach mumps.cz directly.