From vibe coding to vibe deployment. UBOS MCP turns ideas into infra with one message.
Snyk MCP Server
A standalone Model Context Protocol server for Snyk security scanning functionality.
WARNING: THIS MCP SERVER IS CURRENTLY IN ALPHA AND IS NOT YET FINISHED!
Configuration
Update your Claude desktop config (claude-config.json):
{
"mcpServers": {
"snyk": {
"command": "npx",
"args": [
"-y",
"github:sammcj/mcp-snyk"
],
"env": {
"SNYK_API_KEY": "your_snyk_token",
"SNYK_ORG_ID": "your_default_org_id" // Optional: Configure a default organisation ID
}
}
}
}
Replace the token with your actual Snyk API token. The organisation ID can be configured in multiple ways:
- In the MCP settings via
SNYK_ORG_ID(as shown above) - Using the Snyk CLI:
snyk config set org=your-org-id - Providing it directly in commands
The server will try these methods in order until it finds a valid organisation ID.
Verifying Configuration
You can verify your Snyk token is configured correctly by asking Claude to run the verify_token command:
Verify my Snyk token configuration
This will check if your token is valid and show your Snyk user information. If you have the Snyk CLI installed and configured, it will also show your CLI-configured organization ID.
Features
- Repository security scanning using GitHub/GitLab URLs
- Snyk project scanning
- Integration with Claude desktop
- Token verification
- Multiple organization ID configuration options
- Snyk CLI integration for organization ID lookup
Usage
To scan a repository, you must provide its GitHub or GitLab URL:
Scan repository https://github.com/owner/repo for security vulnerabilities
IMPORTANT: The scan_repository command requires the actual repository URL (e.g., https://github.com/owner/repo). Do not use local file paths - always use the repository’s URL on GitHub or GitLab.
For Snyk projects:
Scan Snyk project project-id-here
Organization ID Configuration
The server will look for the organization ID in this order:
- Command argument (if provided)
- MCP settings environment variable (
SNYK_ORG_ID) - Snyk CLI configuration (
snyk config get org)
You only need to specify the organization ID in your command if you want to override the configured values:
Scan repository https://github.com/owner/repo in organisation org-id-here
Snyk CLI Integration
If you have the Snyk CLI installed (npm install -g snyk), the server can use it to:
- Get your default organisation ID
- Fall back to CLI configuration when MCP settings are not provided
- Show CLI configuration details in token verification output
This integration makes it easier to use the same organisation ID across both CLI and MCP server usage.
Snyk MCP Server
Project Details
- sammcj/mcp-snyk
- Last Updated: 4/18/2025
Categories
Recomended MCP Servers
K8s-mcp-server is a Model Context Protocol (MCP) server that enables AI assistants like Claude to securely execute Kubernetes...
An MCP server for managing todos within LLMs, created for educational purposes
Help LLMs to understand your Next apps better
MCP server for aiding with literature reviews
MCP Server for skrape.ai, lets you input any URL and it returns clean markdown for the LLM
Interact with the Paddle API using AI assistants like Claude, or in AI-powered IDEs like Cursor. Manage product...
A Model Context Protocol (MCP) server that provides tools to query Erick Wendel's contributions across different platforms
OpenSearch MCP Server: Open-source search cluster management component
A Whistle proxy management tool based on Model Context Protocol that allows AI assistants to directly control local...
Model Context Protocol Server for Apache OpenDAL™
MCP server for connecting agentic systems to search systems via searXNG
The gateway for GenAI systems to interact with multiple Kubernetes clusters through the MCP
Featured Templates
View More
