StackMCP
securityOfficial

SonarQube MCP

69

SonarSource

Code quality analysis, security hotspot detection, and vulnerability tracking from SonarQube Cloud or Server. Official SonarSource implementation.

3900/wk6.5K tokens(3%)Official5d ago
Network
sonarqubecode-qualitysecuritysastcompliance

Quick Setup

Paste in ~/.claude.json

json
{
  "mcpServers": {
    "sonarqube-mcp": {
      "command": "docker",
      "args": [
        "run",
        "--init",
        "--pull=always",
        "-i",
        "--rm",
        "mcp/sonarqube"
      ],
      "env": {
        "SONARQUBE_TOKEN": "YOUR_SONARQUBE_TOKEN",
        "SONARQUBE_URL": "YOUR_SONARQUBE_URL",
        "SONARQUBE_ORG": "YOUR_SONARQUBE_ORG"
      }
    }
  }
}

Part of these stacks

Cybersecurity Stack
View on GitHub