SonarLint MCP Server

Enables real-time code analysis for JavaScript, TypeScript, and Python through Claude Desktop and other MCP clients, detecting bugs, code smells, and security vulnerabilities with automated quick fixes.

→ nielspeter/sonarlint-mcp-server · listed on glama

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

Glama npm

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings

🚨

Known vulnerabilities in dependencies: 1 critical, 3 high

Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.

⚠️

Tests do not pass

Either the test suite is broken or the code regressed. Either way the published behaviour can’t be verified by the publisher’s own tests.

// full audit trail

The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.

// improvement guidance — verified publishers only

We have 8 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.

// embed badge in your README

[![M8ven Score](https://m8ven.ai/badge/mcp/nielspeter-sonarlint-mcp-server-dx3gpp)](https://m8ven.ai/mcp/nielspeter-sonarlint-mcp-server-dx3gpp)

commit: 083e65758f2df0b01e2997404ee8cf5fcee5dcf2

code hash: 87277b13de355368710cc11800af4fd9f2c489b066ae5ad7cd6a333c97ab7810

verified: 6/18/2026, 11:17:24 AM

view raw JSON →