Snyk MCP connector
Snyk is a developer security platform that identifies and remediates vulnerabilities in code, dependencies, containers, and infrastructure as code. The Snyk MCP connector allows AI agents to retrieve project details, manage group memberships and organizations, and audit security activity through group-level logs. It also supports configuring group settings, managing role assignments, and organizing projects with tags.
Authentication type
- API Key - Requires a static API key to be configured before the agent can connect to the service.
Uses
Use the Snyk MCP connector to perform the following actions:
- Identify and remediate security vulnerabilities across code, dependencies, containers, and infrastructure
- Automate security scanning and reporting for multiple projects across your organization
- Manage user access and organization membership at scale within your security group
- Monitor dependency health and track vulnerability fixes over time
- Integrate Snyk scanning into your development workflow without manual intervention
- Generate audit logs and compliance reports for security governance and risk assessment
- Provision and rotate broker tokens for secure connections between Snyk and your systems
Example prompts
Use the following example prompts to invoke Snyk MCP connector tools from your AI assistant or Boomi Connect workflow:
Show me all vulnerabilities in our Snyk project for the payment service.List every organization in our Snyk group and their member counts.Generate a security audit log for our Snyk group from the last 30 days.Add our new developer to the engineering organization in Snyk.What are the critical vulnerabilities in all our monitored dependencies?Create a new organization in Snyk for our infrastructure team.Retrieve the import job details for our recent container image scan.Update our Snyk integrations to use the latest broker token.Show me all entitlements available for our Snyk organization.List all users and their roles in our Snyk group.
Snyk MCP connector tools
The Snyk MCP connector provides the following tools. Each tool maps to a specific action you can invoke from your AI agent or automation.
| Tool | Description |
|---|---|
| snyk_snykgetproject_invoke | Retrieves detailed information about a specific project. |
| Get group level audit logs | Displays audit logs for actions performed at the group level. |
| List all members in a group | Shows all users who are members of a specific group. |
| Add a member to an organization within a group | Adds a user to an organization that belongs to a group. |
| List all organizations in a group | Shows all organizations that are part of a specific group. |
| List all roles in a group | Displays all available roles and their permissions within a group. |
| View group settings | Shows the current configuration and settings for a group. |
| Update group settings | Modifies the configuration and settings for a group. |
| List all tags in a group | Shows all tags assigned to resources within a group. |
| Delete tag from group | Removes a tag from a group and its associated resources. |
| Monitor Dep Graph | Tracks and monitors project dependency graphs and relationships. |
| Create a new organization | Creates a new organization within the system. |
| Remove organization | Deletes an organization and its associated data. |
| Get organization level audit logs | Displays audit logs for actions performed at the organization level. |
| List all dependencies | Shows all dependencies used across projects and applications. |
| Get an organization's entitlement value | Retrieves the service entitlements and limits for an organization. |
| List all entitlements | Shows all available service entitlements across the system. |
| List | Retrieves a list of items or resources. |
| Add new integration | Creates a connection to an external tool or service. |
| Update existing integration | Modifies settings for an existing external tool connection. |
| Delete credentials | Removes stored authentication credentials for integrations. |
| Provision new broker token | Generates a new token for secure data exchange. |
| Switch between broker tokens | Changes the active token used for secure communications. |
| Clone an integration (with settings and credentials) | Duplicates an integration including all its configuration. |
| Import targets | Brings external resources into the system for scanning. |
| Get import job details | Retrieves status and results of an import operation. |
| Retrieve | Fetches a specific resource or item from the system. |
| Update | Modifies an existing resource or item in the system. |
| Get existing integration by type | Retrieves an integration based on its category. |
| Invite users | Sends invitations to users to join an organization. |
| List all licenses | List all licenses. |
| List Members | List Members. |
| Update a member's role in the organization | Update a member's role in the organization. |
| Remove a member from the organization | Remove a member from the organization. |
| Update a member in the organization | Update a member in the organization. |
| getOrgNotificationSettings | Get organization notification settings. |
| Set notification settings | Set notification settings. |
| Delete a project | Delete a project. |
| Retrieve a single project | Retrieve a single project. |
| Update a project | Update a project. |
| Activate | Activate. |
| List all Aggregated issues | List all Aggregated issues. |
| Applying attributes | Applying attributes. |
| Deactivate | Deactivate. |
| Get Project dependency graph | Get Project dependency graph. |
| List all project snapshots | List all project snapshots. |
| List all project snapshot aggregated issues | List all project snapshot aggregated issues. |
| List all project snapshot issue paths | List all project snapshot issue paths. |
| Delete ignores | Delete ignores. |
| Retrieve ignore | Retrieve ignore. |
| Add ignore | Add ignore. |
| Replace ignores | Replace ignores. |
| List all ignores | List all ignores. |
| Create jira issue | Create jira issue. |
| List all project issue paths | List all project issue paths. |
| List all jira issues | List all jira issues. |
| Move project to a different organization | Move project to a different organization. |
| Delete project settings | Delete project settings. |
| List project settings | List project settings. |
| Update project settings | Update project settings. |
| Add a tag to a project | Add a tag to a project. |
| Remove a tag from a project | Remove a tag from a project. |
| List all projects | List all projects. |
| Delete pending user provision | Delete pending user provision. |
| List pending user provisions | List pending user provisions. |
| Provision a user to the organization | Provision a user to the organization. |
| View organization settings | View organization settings. |
| Update organization settings | Update organization settings. |
| List webhooks | List webhooks. |
| Create a webhook | Create a webhook. |
| Delete a webhook | Delete a webhook. |
| Retrieve a webhook | Retrieve a webhook. |
| Ping a webhook | Ping a webhook. |
| List all the organizations a user belongs to | List all the organizations a user belongs to. |
| Get issue counts | Get issue counts. |
| Get latest issue counts | Get latest issue counts. |
| Get project counts | Get project counts. |
| Get latest project counts | Get latest project counts. |
| Get test counts | Get test counts. |
| Get list of issues | Get list of issues. |
| Get list of latest issues | Get list of latest issues. |
| Test composer_json & composer_lock file | Test composer.json & composer.lock file. |
| Test Dep Graph | Test Dep Graph. |
| Test Gopkg_toml & Gopkg_lock File | Test Gopkg.toml & Gopkg.lock File. |
| Test vendor_json File | Test vendor.json File. |
| Test gradle file | Test gradle file. |
| Test for issues in a public package by group, name and version | Test for issues in a public package by group, name and version. |
| Test maven file | Test maven file. |
| testPublicPackageIssues | Test Public Package Issues. |
| Test package_json & package-lock_json File | Test package.json & package-lock.json File. |
| Test for issues in a public package by name and version | Test for issues in a public package by name and version. |
| Test requirements_txt file | Test requirements.txt file. |
| getTestPip | Test for issues in a public package by name and version. |
| Test gemfile_lock file | Test gemfile.lock file. |
| Test for issues in a public gem by name and version | Test for issues in a public gem by name and version. |
| Test sbt file | Test sbt file. |
| getTestSbt | Test Public Package Issues. |
| Test package_json & yarn_lock File | Test package.json & yarn.lock File. |
| Get My Details | Get My Details. |
| Get organization notification settings | Get organization notification settings. |
| Modify organization notification settings | Modify organization notification settings. |
| Get project notification settings | Get project notification settings. |
| Modify project notification settings | Modify project notification settings. |
| Get User Details | Get User Details. |
