SupportSnyk LearnAPI referenceProduct updatesSign up for free

Snyk MCP setup examples

To add an MCP server to an Agentic IDE, consult the documentation for the AI system where you plan to integrate Snyk and review the specific MCP instructions. Examples of systems where you can integrate Snyk include Windsurf's MCP, Qodo's MCP support, and VS Code MCP support.

MCP setup examples using the mcpconfig.json file

This method can be used to set up Windsurf's MCP, as one example. These examples show how to add the Snyk MCP server in the mcpconfig.json file for each transport type. This method requires that the Snyk CLI is in your system path and can be invoked with the command snyk. If the CLI is not in your system path, you can provide the full path to the CLI.

Add the Snyk MCP server using stdio transport in your mcpconfig.json file

{
  "mcpServers": {
    "Snyk Security Scanner": {
      "command": "/absolute/path/to/snyk",
      "args": [
        "mcp",
        "-t",
        "stdio",
        "--experimental"
      ],
      "env":{
      // optional CLI environment variables, e.g. SNYK_CFG_ORG, SNYK_TOKEN
      }
    }
  }
}

Add the Snyk MCP server using sse transport in your mcpconfig.json file

If your MCP Client expects a URL, then you will need to start the MCP server in your terminal first by running snyk mcp -t sse --experimental

This will output the base URL for your local SSE server. The sse endpoint lives on http://baseUrl/sse.

{
  "mcpServers": {
    "Snyk Security Scanner": {
      "url": "http://baseUrl/sse",
    }
  }
}

SSE transport supports running the MCP server locally only. SSe does not support remote or hosted configurations.

Qodo setup steps

  1. Select the Agentic option for interacting with Qodo.

Select Agentic

  1. Click Connect more tools.

Connect more tools

  1. Click the + button to add a new MCP server.

Plus button for Agentic Tools (MCP)

  1. Provide the required details for the Snyk MCP Server:

MCP server details

  1. Snyk Security should now be visible in your list of tools. You can expand the Snyk Security list to see the tools available with the Snyk MCP integration.

Tools available with Snyk MCP integraton

  1. At this point, start interacting with the Snyk MCP and ask for your code to be scanned.

Request to scan your code
PreviousSnyk MCP experimentalNextTroubleshooting for the Snyk MCP server

Last updated

Was this helpful?