SupportSnyk LearnAPI referenceProduct updatesSign up for free
Edit

JetBrains AI assistant

You can add the Snyk MCP server to JetBrains AI Assistant to secure code generated with agentic workflows through an LLM. This can be achieved in several ways. When you use it for the first time, the MCP server will ask for trust and trigger authentication if necessary.

Prerequisites

Install JetBrains AI Assistant

Add the JetBrains AI Assistant plugin to your JetBrains IDE (IntelliJ IDEA, WebStorm, PyCharm, and so on). For more details, see the official JetBrains AI Assistant getting started page.

Jetbrians AI Assistent tends to work more stably with the Snyk MCP service when using the pre-installed CLI option.

Install the Snyk MCP Server in JetBrains AI Assistant

Install the Snyk MCP Server using the method that best suits your operating system and local development environment.

Install with pre-installed Snyk CLI

If you have the Snyk CLI installed, open Settings/Preferences > Tools > AI Assistant > Model Context Protocol (MCP). Edit the MCP configuration and add the following instructions:

  • You might need to specify the full path to the Snyk executable CLI.

  • JetBrain AI Assistant may have issues with the snyk_trust function, needed before a dependency check (SCA scan). To fix this, add --disable-trust to the MCP command.

If you have the Snyk CLI installed and accessible on your system path add the following command.

If the snyk command is not available, add it by following the instructions on the Installing or updating the Snyk CLI page.

Reload the IDE window for the changes to apply.

Install with Node.js and npx

Open Settings/Preferences ▸ Tools ▸ AI Assistant ▸ Model Context Protocol (MCP).

If you have the Node.js npx executable installed in your environment, add the following command:

JetBrain AI Assistant may have issues with the snyk_trust function, needed before a dependency check (SCA scan). To fix this, add --disable-trust to the MCP command.

Reload the IDE window for the changes to apply.

Setting up the Snyk MCP Server

Next, you can verify that the Snyk MCP Server is available by checking the Status column in the MCP configuration and requesting it to list the tools it has available.

As a one-time setup, authenticate and trust the current Project directory. If required, the agentic workflow will likely manage this automatically.

If you are already authenticated with the Snyk CLI installed on your system path, or through a prior interaction, then proceed to work with the Snyk MCP Server.

Examples

Scanning for security vulnerabilities

In the chat, you can tag specific files or functions and ask JetBrains AI Assistant to scan your code for safe deployment to production.

prompt
Scan this directory for code security & dependency vulnerabilities and security issues

The AI Assistant indicates that this request is related to security vulnerability scanning and calls the Snyk MCP Server for various scans.

PreviousAmazon Q guideNextJetBrains Junie

Last updated

Was this helpful?