Can I check for critical vulnerabilities in a specific project version?

Yes! Use the `list_vulnerabilities` tool with the Project and Version IDs. Your agent will fetch the list of components with known security flaws and their severity levels.

How do I know if my Black Duck scan is finished?

Simply ask the agent to `get_bom_status` for the specific project version. It will return the current calculation status, showing if the BOM is 'Up to date' or still processing.

What happens if I trigger API rate limits?

Black Duck limits connections to 100 requests per 10 seconds or 10,000 per 30 minutes. If you exceed this sustained load protection, you will temporarily receive a HTTP 429 error code restricting your IP for 15 minutes.

Black Duck (Synopsys) MCP Server

Name: Black Duck (Synopsys)
Availability: InStock
Author: Vinkius

synopsys.com/software-integrity/black-duck.html

Built by Vinkius GDPR ToolsGratuit

Secure your open source supply chain via Black Duck — list projects, versions, and vulnerabilities directly from any AI agent.

Vinkius AI Gateway prend en charge le streamable HTTP et le SSE.

Fonctionne avec tous les agents IA que vous utilisez déjà

…et tout client compatible MCP

Black Duck (Synopsys) MCP Server : voyez votre AI Agent en action

AI Agent→Vinkius→Black Duck (Synopsys)

You

Vinkius AI Gateway

GDPR·High Security·Kill Switch·Ultra-Low Latency·Plug and Play

Capacités intégrées (10)

get_bom_status

Check BOM calculation status for a project version

get_project

Get details of a specific project

get_vulnerability_details

Get details of a specific CVE/Vulnerability

list_code_locations

List all scan code locations

list_policy_rules

List all security policy rules

list_project_versions

List all versions for a specific project

list_projects

List all Black Duck projects

list_users

List all Black Duck users

list_vulnerabilities

List vulnerabilities for a project version

search_projects

Search projects by name

Ce que ce connecteur débloque

Connect your Black Duck (Synopsys) instance to any AI agent and orchestrate your open source security and license compliance workflows through natural conversation.

What you can do

Project Oversight — List and retrieve detailed metadata for all your software projects and their versions.
Vulnerability Tracking — Query project versions for known vulnerabilities (CVEs) and retrieve severity levels.
BOM Monitoring — Check the status of Bill of Materials (BOM) calculations to ensure up-to-date compliance data.
Policy Management — List and audit security policy rules defined across your organization.
Scan Analysis — Access code locations and scan histories to track security coverage.
User & Access Auditing — Retrieve user profiles and manage access controls within the platform.

How it works

1. Subscribe to this server
2. Enter your Black Duck Instance URL and API Token
3. Start securing your code from Claude, Cursor, or any MCP-compatible client

Who is this for?

Security Engineers — quickly audit vulnerabilities across multiple projects without manual dashboard exports.
Developers — check the security status of their project dependencies straight from the code editor.
Compliance Officers — retrieve policy rule summaries and BOM statuses for periodic reporting.

Questions fréquemment posées

Donnez à vos agents IA la puissance de Black Duck (Synopsys)

Accédez à Black Duck (Synopsys) et à plus de 2 000 serveurs MCP — prêts à être utilisés par vos agents, dès maintenant. Pas de code glue. Pas d'intégrations personnalisées. Branchez simplement Vinkius AI Gateway et laissez vos agents travailler.

DÉTAILS

CatégorieFort Knox

Mots-clés

open-source-security vulnerability-scanning license-compliance software-supply-chain cve-tracking risk-management

Support 24/7

support@vinkius.com

Security

Vinkius Trust Center

SLA

Service Level Agreement

Plus dans cette catégorie

Aporia

7 outils

Monitor AI models and validate LLM interactions with guardrails directly from your AI agent to ensure safety and observability.

Veracode

10 outils

Bring Veracode AppSec to your AI. Analyze source code flaws, extract application profiles, and track vulnerabilities conversationaly.

CrowdStrike Falcon

8 outils

Detect threats, manage endpoints, investigate incidents, and query telemetry from CrowdStrike Falcon — the #1 endpoint detection and response platform.

Greenspark

12 outils

Embed climate action into your product via Greenspark — plant trees, offset carbon, and track impact via AI.

Ghost

11 outils

Manage blog posts, track authors, and oversee static pages via AI agents with Ghost CMS.

BigMailer

10 outils

Manage email marketing via BigMailer — list brands, contacts, and campaigns directly from any AI agent.