Best Snyk MCP Servers
Snyk is a developer security platform that helps developers build software securely, providing tools to find, fix, and monitor vulnerabilities in code, dependencies, containers, and infrastructure as code.
Why this server?
Provides complementary AI-specific security scanning that understands AI agent vulnerabilities not covered by traditional code scanners like Snyk.
AlicenseAqualityBmaintenanceSecurity co-pilot for AI agents. Scans for vulnerabilities like prompt injection, infinite loops, and token bombing in AI Agents, audits MCP servers, verifies AGENTS.md governance, and generates EU AI Act compliance reports.Last updated101422Apache 2.0Why this server?
Allows to interact with Snyk API & Web to onboard scan targets, configure authentication, run DAST scans, and triage findings.

Snyk API & Web MCP Serverofficial
AlicenseCqualityAmaintenanceConnects AI coding assistants to Snyk API & Web for onboarding scan targets, configuring authentication, running DAST scans, and triaging findings through natural language.Last updated517Apache 2.0Why this server?
Integrates with Snyk for security scanning and vulnerability detection in the package dependencies.
AlicenseAqualityBmaintenanceMCP server for Polymarket trading automation — copy-trade top wallets, discover markets, monitor positions, and execute live/preview trades via the CLOB API.Last updated488410MITWhy this server?
Provides tools for listing Snyk projects, querying security issues by severity, filtering by project or scope (Frontend/Backend), and obtaining normalized issue data with CVEs, dependencies, and fix information.
AlicenseDqualityDmaintenanceIntegrates Snyk security scanning with MCP clients like Claude Code, enabling listing of projects, querying issues by severity, and filtering by project or scope.Last updated3MITWhy this server?
Enables AI agents to trigger security scans for code, open-source dependencies, infrastructure as code (IaC), and container images, as well as retrieve findings, manage SBOM files, and handle Snyk authentication.

Snyk Studio MCPofficial
Alicense-qualityAmaintenanceAn MCP server that enables easy integration with coding assistants, providing security context to AI agents. This runs locally using the Snyk CLI.Last updated49Apache 2.0Why this server?
Provides comprehensive security scanning and vulnerability management through both Snyk CLI tools (test, code analysis, container scanning, IaC scanning, SBOM generation) and REST API tools for querying projects, issues, and security findings across organizations.
Alicense-qualityFmaintenanceProvides security scanning capabilities through Snyk CLI tools and REST API, enabling AI assistants to test projects for vulnerabilities, retrieve security issues, and manage Snyk projects with comprehensive SAST, container, and infrastructure as code scanning.Last updated2MITWhy this server?
Provides superior supply chain security compared to Snyk Agent Scan by offering npm package integrity verification specifically for MCP servers.
Alicense-qualityAmaintenanceMCP servers are installed via npx -y @scope/package — which silently downloads the latest version every time your AI tool starts, with no integrity check. mcp-lock fixes this by recording exact tarball hashes on first run and detecting any changes on every run after that — the same guarantee npm ci gives you for Node.js projects.Last updated16MITWhy this server?
Scans for prompt injection, tool shadowing, toxic data flows, and hardcoded secrets.
Alicense-qualityBmaintenanceA proxy server that wraps any MCP server, adding behavioral profiling, security scanning, risk gating, and safe execution to its tools.Last updated7Apache 2.0Why this server?
Provides tools for retrieving KPI data from Snyk API, enabling automated monitoring and reporting of security metrics for your Snyk organization.
Flicense-qualityDmaintenanceAn MCP server that interfaces with the Snyk API to retrieve KPI data for your organization.Last updated