sonarqube-mcp-server
Verified Safeby 9506hqwy
Overview
Provides a Model Context Protocol (MCP) server that exposes SonarQube API functionalities, allowing external tools, such as AI agents, to interact with and manage SonarQube instances.
Installation
docker run --rm -i -e SONARQUBE_URL=<YOUR_SONARQUBE_URL> -e SONARQUBE_TOKEN=<YOUR_SONARQUBE_TOKEN> sonarqube-mcp-serverEnvironment Variables
- SONARQUBE_URL
- SONARQUBE_USER
- SONARQUBE_PASSWORD
- SONARQUBE_TOKEN
- SONARQUBE_READONLY
Security Notes
The server acts as a proxy for SonarQube APIs. It is implemented in Go, following standard coding practices. Credentials (URL, username, password, token) are handled at runtime via command-line flags or environment variables and are not hardcoded. It supports both basic and bearer token authentication. A 'readonly' flag is available (defaulting to true) to restrict operations to HTTP GET methods only, enhancing security by preventing write operations. The server itself does not introduce complex parsing or arbitrary code execution risks. The primary security considerations depend on the trustworthiness of the SonarQube instance it connects to and the secure management of the credentials provided to this server.
Similar Servers
codex-mcp-go
Wraps the OpenAI Codex CLI as an MCP tool, enabling AI clients like KiloCode, Roo Code, and Claude Code to utilize Codex for high-precision coding tasks, debugging, and code reviews within an agentic workflow.
honeybadger-mcp-server
Provides structured access to the Honeybadger API through the Model Context Protocol (MCP) for integration with LLM agents and MCP clients.
mcp-go-starter
A feature-complete Model Context Protocol (MCP) server template in Go demonstrating tools, resources, and prompts for AI agent interaction.
tenets
Provides intelligent, token-optimized code context and automatically injects guiding principles to AI coding assistants for enhanced understanding and consistent interactions.