How to Use the Black Duck (Synopsys) MCP in Claude Code

Q: How do I register the Black Duck (Synopsys) MCP Server in Claude Code?

Run claude mcp add --transport http black-duck-synopsys -- in your terminal. You can verify the active connection by running claude mcp list.

Q: Can I use Claude Code to search Black Duck (Synopsys) projects from my shell?

Yes, you can ask Claude Code to run searchprojects to locate a repository. It will return the exact project details directly to your terminal.

Q: How does Claude Code handle Black Duck (Synopsys) policy violations?

The agent uses listpolicyrules to pull your compliance settings. It flags any failing dependencies and suggests clean versions from your terminal.

Q: Can I list users who have access to my projects?

Yes, running listusers lists all registered accounts on your server. This helps SREs audit access permissions during security reviews.

Run security audits, track BOM status, and list CVEs directly from your terminal using Claude Code.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect Black Duck (Synopsys) MCP to Claude Code

Create your Vinkius account to connect Black Duck (Synopsys) to Claude Code and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup Black Duck (Synopsys) with Claude Code

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Command-line vulnerability triage via Claude Code

Claude Code queries `list_vulnerabilities` to fetch active threats and dumps them straight to your terminal. This lets you run audits without forcing you to log into a browser. If you need to dive deeper, the agent runs `get_vulnerability_details` to fetch CVSS scores and remediation steps. You can pipe this data directly into your shell scripts for automated reporting.

Monitor BOM status from the terminal

Claude Code uses `get_bom_status` to check if your Bill of Materials is fully calculated before starting a deployment. This keeps your CI/CD pipelines running smoothly by tracking your scans. The agent queries `list_code_locations` to verify that your local build output matches your registered scan paths. This ensures you never ship unverified code to your staging servers.

Audit security policies with this MCP Server

Checking your code against company rules is fast when Claude Code runs `list_policy_rules` right before you commit. The agent checks for policy violations and flags any issues in your terminal output. If a violation block occurs, the agent calls `list_project_versions` to find compliant package versions. You can approve the version bump and apply the fix with a single terminal command.

Setup guide

Set up Black Duck (Synopsys) MCP in Claude Code

Prerequisites

Claude Code CLI installed (npm install -g @anthropic-ai/claude-code)
Active Vinkius subscription with a valid endpoint token

1

Run the add command

Open your terminal and run the command shown on the right. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com. Use --scope user to make it available across all projects.
2

Verify the connection

Start a Claude Code session and type /mcp to list connected servers. You should see black-duck-synopsys-mcp with a green status indicator.
3

Start using tools

Ask Claude Code something like "Check my latest Black Duck (Synopsys) transactions." It will automatically discover and invoke the available Black Duck (Synopsys) tools.

Terminal

claude mcp add --transport http black-duck-synopsys-mcp https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp

Get your connection token →

Prerequisites

Claude Code CLI installed
Active Vinkius subscription with a valid endpoint token

1

Open the config file

Create or edit .mcp.json in your project root for project-level scope, or ~/.claude.json for user-level scope.
2

Add the Black Duck (Synopsys) MCP

Paste the JSON snippet shown on the right into the mcpServers object. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.
3

Restart Claude Code

Start a new Claude Code session. Type /mcp to confirm the server is connected. The tools will be automatically available in your conversation.

.mcp.json

{
  "mcpServers": {
    "black-duck-synopsys-mcp": {
      "type": "url",
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Black Duck (Synopsys). All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect Black Duck (Synopsys) now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about Black Duck (Synopsys) MCP in Claude Code

Run `claude mcp add --transport http black-duck-synopsys -- ` in your terminal. You can verify the active connection by running `claude mcp list`.

Yes, you can ask Claude Code to run `search_projects` to locate a repository. It will return the exact project details directly to your terminal.

The agent uses `list_policy_rules` to pull your compliance settings. It flags any failing dependencies and suggests clean versions from your terminal.

Yes, running `list_users` lists all registered accounts on your server. This helps SREs audit access permissions during security reviews.

No, it only transmits project identifiers, policy rules, and CVE lists to your agent. Your actual source code is never exposed to Vinkius or any external APIs.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript