{"id":"sonarqube-mcp-server","name":"SonarQube MCP Server","homepage":"https://github.com/SonarSource/sonarqube-mcp-server","repo_url":"https://github.com/SonarSource/sonarqube-mcp-server","category":"developer-tools","subcategories":["code-quality","security","static-analysis"],"tags":["sonarqube","mcp","code-quality","sast","security-hotspots","java","docker"],"what_it_does":"An official MCP server from SonarSource that connects AI agents to SonarQube Cloud or self-hosted SonarQube Server for code quality analysis, issue inspection, security hotspot review, and quality gate evaluation.","use_cases":["Letting AI coding assistants surface and explain SonarQube code issues inline during development","Querying security hotspots and vulnerability findings from SonarQube within agent workflows","Automated quality gate checks as part of AI-driven CI/CD pipelines","Analyzing code snippets for bugs and security flaws directly inside Claude or Cursor"],"not_for":["Teams without an existing SonarQube Cloud or Server instance","Projects needing DAST or runtime security testing (SonarQube is SAST only)","Non-Java/non-supported language codebases without SonarQube analyzer support"],"best_when":"Your team already uses SonarQube and wants AI assistants to surface code quality and security findings without leaving the editor or agent context.","avoid_when":"You do not have a SonarQube subscription or self-hosted instance, or your project is small enough that lightweight linters suffice.","alternatives":["CodeClimate MCP","Semgrep","Snyk","GitHub Advanced Security"],"af_score":75.8,"security_score":80.0,"reliability_score":null,"package_type":"mcp_server","discovery_source":["github","github_awesome"],"priority":"low","status":"evaluated","version_evaluated":"latest","last_evaluated":"2026-03-01T09:50:06.240968+00:00","performance":{"latency_p50_ms":null,"latency_p99_ms":null,"uptime_sla_percent":null,"rate_limits":null,"data_source":"llm_estimated","measured_on":null}}