{"_id":"blackduck-polaris-mcp-server","_rev":"6-7aef90049e07efc661024ce48094f241","name":"blackduck-polaris-mcp-server","dist-tags":{"latest":"0.3.1"},"versions":{"0.1.0":{"name":"blackduck-polaris-mcp-server","version":"0.1.0","keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"license":"MIT","_id":"blackduck-polaris-mcp-server@0.1.0","maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"bin":{"blackduck-polaris-mcp-server":"build/index.js"},"dist":{"shasum":"44fad7962ca08d6bbb6eb859eed9d12efb2c1a41","tarball":"https://registry.npmjs.org/blackduck-polaris-mcp-server/-/blackduck-polaris-mcp-server-0.1.0.tgz","fileCount":81,"integrity":"sha512-9MwXEOq5WvwclIS4IsQxVsrF9HJExYR+9OhEwMhQabyIJE1agUFusGsm9QXN0bnRhXoV6AocRZYIIdnfBXOtGA==","signatures":[{"sig":"MEYCIQDJfESTima1agiiNx+3nh//AtHZPeprGu0PVlfMjL5TJAIhALuyRPOEJt/i+X1F2bXsrAnZhJLcAyyGa2uwMhMycBRa","keyid":"SHA256:DhQ8wR5APBvFHLF/+Tc+AYvPOdTpcIDqOhxsBHRwC7U"}],"unpackedSize":124645},"main":"build/index.js","type":"module","types":"./build/index.d.ts","engines":{"node":">=18.0.0"},"gitHead":"4776aaaadc230f5f73e88791abd5b0abdfa09f1d","scripts":{"dev":"tsc --watch","lint":"tsc --noEmit","build":"tsc","start":"node build/index.js","test:e2e":"vitest run --config e2e/vitest.config.ts","prepublishOnly":"npm run build"},"_npmUser":{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"},"_npmVersion":"10.8.1","description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","directories":{},"_nodeVersion":"20.16.0","dependencies":{"zod":"^3.23.0","@modelcontextprotocol/sdk":"^1.12.0"},"_hasShrinkwrap":false,"devDependencies":{"vitest":"^3.1.1","typescript":"^5.5.0","@types/node":"^20.0.0"},"_npmOperationalInternal":{"tmp":"tmp/blackduck-polaris-mcp-server_0.1.0_1774975457156_0.3156344670290261","host":"s3://npm-registry-packages-npm-production"}},"0.2.0":{"name":"blackduck-polaris-mcp-server","version":"0.2.0","keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"license":"MIT","_id":"blackduck-polaris-mcp-server@0.2.0","maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"bin":{"blackduck-polaris-mcp-server":"build/index.js"},"dist":{"shasum":"b7bf383a8eba01fd3baef2647930249b1d33bbc6","tarball":"https://registry.npmjs.org/blackduck-polaris-mcp-server/-/blackduck-polaris-mcp-server-0.2.0.tgz","fileCount":81,"integrity":"sha512-zKKbn1K2nUvYlgZk/CXGWhb+H7X7JTKFPDc70QIMUBJzkCDU7arPwbyjc4mx6lFAj/v5jC9J2abpefFVPhJ9GA==","signatures":[{"sig":"MEYCIQDgUw1kvYGPRC1fY+wmDpIJ8EHQ1TmWthC7MEzEQ2l7WwIhAODCj9kMi0+OGsjVeFxnRO/mMlTH4QeyzqWbh0o/hMqD","keyid":"SHA256:DhQ8wR5APBvFHLF/+Tc+AYvPOdTpcIDqOhxsBHRwC7U"}],"unpackedSize":127208},"main":"build/index.js","type":"module","types":"./build/index.d.ts","engines":{"node":">=18.0.0"},"gitHead":"b6175ff64d2156e1e14bb5d9eaf60146d4c6a665","scripts":{"dev":"tsc --watch","lint":"tsc --noEmit","build":"tsc","start":"node build/index.js","test:e2e":"vitest run --config e2e/vitest.config.ts","prepublishOnly":"npm run build"},"_npmUser":{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"},"_npmVersion":"10.8.1","description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","directories":{},"_nodeVersion":"20.16.0","dependencies":{"zod":"^3.23.0","@modelcontextprotocol/sdk":"^1.12.0"},"_hasShrinkwrap":false,"devDependencies":{"vitest":"^3.1.1","typescript":"^5.5.0","@types/node":"^20.0.0"},"_npmOperationalInternal":{"tmp":"tmp/blackduck-polaris-mcp-server_0.2.0_1774978339512_0.40745805413085967","host":"s3://npm-registry-packages-npm-production"}},"0.2.1":{"name":"blackduck-polaris-mcp-server","version":"0.2.1","keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"license":"MIT","_id":"blackduck-polaris-mcp-server@0.2.1","maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"bin":{"blackduck-polaris-mcp-server":"build/index.js"},"dist":{"shasum":"58e53131f6dae554737693b89536733b78708488","tarball":"https://registry.npmjs.org/blackduck-polaris-mcp-server/-/blackduck-polaris-mcp-server-0.2.1.tgz","fileCount":81,"integrity":"sha512-V4XlZ46zqYIeUa4EVXiIvoi8Szl2uBRJPr1jbH/hU20FdY0azJolZ0UFrXMV+weMiqQ2a1oDXx1UumD2pMerDA==","signatures":[{"sig":"MEUCIBx4B4YZh5AkmqGoJlIMny4ju4M0Qdl8hYlKK2i9WJmCAiEAsebzoBteEicWgZDhjMFcchxM138Ry6HzquXepf/3s1Q=","keyid":"SHA256:DhQ8wR5APBvFHLF/+Tc+AYvPOdTpcIDqOhxsBHRwC7U"}],"unpackedSize":127194},"main":"build/index.js","type":"module","types":"./build/index.d.ts","engines":{"node":">=18.0.0"},"gitHead":"3934eb02830c1a58ab3bec1f7119bcf75f0107a7","scripts":{"dev":"tsc --watch","lint":"tsc --noEmit","build":"tsc","start":"node build/index.js","test:e2e":"vitest run --config e2e/vitest.config.ts","prepublishOnly":"npm run build"},"_npmUser":{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"},"_npmVersion":"10.8.1","description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","directories":{},"_nodeVersion":"20.16.0","dependencies":{"zod":"^3.23.0","@modelcontextprotocol/sdk":"^1.12.0"},"_hasShrinkwrap":false,"devDependencies":{"vitest":"^3.1.1","typescript":"^5.5.0","@types/node":"^20.0.0"},"_npmOperationalInternal":{"tmp":"tmp/blackduck-polaris-mcp-server_0.2.1_1774978803455_0.6219284329734562","host":"s3://npm-registry-packages-npm-production"}},"0.2.2":{"name":"blackduck-polaris-mcp-server","version":"0.2.2","keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"license":"MIT","_id":"blackduck-polaris-mcp-server@0.2.2","maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"bin":{"blackduck-polaris-mcp-server":"build/index.js"},"dist":{"shasum":"5342a4d7244f10e4e91d24293bd2075e3e7ddf0d","tarball":"https://registry.npmjs.org/blackduck-polaris-mcp-server/-/blackduck-polaris-mcp-server-0.2.2.tgz","fileCount":81,"integrity":"sha512-v8BrWM5IlrfIwWbQjDjtWyJFZDRWsjRhRZn3bTAVQK0jeBGYmEKRU3SncNzGLlwEeAovFZ+9dVyUcRlFluMgRw==","signatures":[{"sig":"MEQCIFsB8yS3dNfeP3U5W8G6hNDnLkGG04ClfYFZYG6n8KeHAiBMWkLeHBgVFkq4GiYcPmuix6tbpGTKV5qVaObQ3g0EEg==","keyid":"SHA256:DhQ8wR5APBvFHLF/+Tc+AYvPOdTpcIDqOhxsBHRwC7U"}],"unpackedSize":128916},"main":"build/index.js","type":"module","types":"./build/index.d.ts","engines":{"node":">=18.0.0"},"gitHead":"977f8da891b04136f617e8d5a74bd88e2648e93a","scripts":{"dev":"tsc --watch","lint":"tsc --noEmit","build":"tsc","start":"node build/index.js","test:e2e":"vitest run --config e2e/vitest.config.ts","prepublishOnly":"npm run build"},"_npmUser":{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"},"_npmVersion":"10.8.1","description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","directories":{},"_nodeVersion":"20.16.0","dependencies":{"zod":"^3.23.0","@modelcontextprotocol/sdk":"^1.12.0"},"_hasShrinkwrap":false,"devDependencies":{"vitest":"^3.1.1","typescript":"^5.5.0","@types/node":"^20.0.0"},"_npmOperationalInternal":{"tmp":"tmp/blackduck-polaris-mcp-server_0.2.2_1774979501178_0.9580471870188496","host":"s3://npm-registry-packages-npm-production"}},"0.3.0":{"name":"blackduck-polaris-mcp-server","version":"0.3.0","keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"license":"MIT","_id":"blackduck-polaris-mcp-server@0.3.0","maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"bin":{"blackduck-polaris-mcp-server":"build/index.js"},"dist":{"shasum":"946891651d2a2a6e7c48c2d8d957c5c9e47e0a7d","tarball":"https://registry.npmjs.org/blackduck-polaris-mcp-server/-/blackduck-polaris-mcp-server-0.3.0.tgz","fileCount":81,"integrity":"sha512-vfSOjQawKZkjBmvBSD0RvJHPGuxmBvijU9DJHM1qXFVMyo9V5wpcMx5dtAt/m+kmodVM742WCME8HWrGbe/rUw==","signatures":[{"sig":"MEUCIQDevgCImy3QusgTJLzXm0nXugXaMxeLCRULbe0QowhpZQIgacf7uYXzL22NNjVX8TkqhGDnULWvYlvIgi0c4m5PrZo=","keyid":"SHA256:DhQ8wR5APBvFHLF/+Tc+AYvPOdTpcIDqOhxsBHRwC7U"}],"unpackedSize":129887},"main":"build/index.js","type":"module","types":"./build/index.d.ts","engines":{"node":">=18.0.0"},"gitHead":"112925106d081305cc41b017c55fd6dc952a3022","scripts":{"dev":"tsc --watch","lint":"tsc --noEmit","build":"tsc","start":"node build/index.js","test:e2e":"vitest run --config e2e/vitest.config.ts","prepublishOnly":"npm run build"},"_npmUser":{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"},"_npmVersion":"10.8.1","description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","directories":{},"_nodeVersion":"20.16.0","dependencies":{"zod":"^3.23.0","@modelcontextprotocol/sdk":"^1.12.0"},"_hasShrinkwrap":false,"devDependencies":{"vitest":"^3.1.1","typescript":"^5.5.0","@types/node":"^20.0.0"},"_npmOperationalInternal":{"tmp":"tmp/blackduck-polaris-mcp-server_0.3.0_1774985243435_0.9960385878818274","host":"s3://npm-registry-packages-npm-production"}},"0.3.1":{"name":"blackduck-polaris-mcp-server","version":"0.3.1","description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","type":"module","main":"build/index.js","bin":{"blackduck-polaris-mcp-server":"build/index.js"},"scripts":{"build":"tsc","dev":"tsc --watch","start":"node build/index.js","lint":"tsc --noEmit","prepublishOnly":"npm run build","test:e2e":"vitest run --config e2e/vitest.config.ts"},"keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"license":"MIT","engines":{"node":">=18.0.0"},"dependencies":{"@modelcontextprotocol/sdk":"^1.12.0","zod":"^3.23.0"},"devDependencies":{"@types/node":"^20.0.0","typescript":"^5.5.0","vitest":"^3.1.1"},"_id":"blackduck-polaris-mcp-server@0.3.1","gitHead":"bf9e689932027541b7caa141e0b2065e5e530b48","types":"./build/index.d.ts","_nodeVersion":"20.16.0","_npmVersion":"10.8.1","dist":{"integrity":"sha512-HoYFCiBAORvCkWjQoKD4MOq8vGG/O1fYhJa44s27zgYlVqYa4qwbznTISto7LA4l+E7oAZfKSPQUpP7qPcHDCw==","shasum":"4f394883584f0236ac59106875b3819feb1faa95","tarball":"https://registry.npmjs.org/blackduck-polaris-mcp-server/-/blackduck-polaris-mcp-server-0.3.1.tgz","fileCount":81,"unpackedSize":131896,"signatures":[{"keyid":"SHA256:DhQ8wR5APBvFHLF/+Tc+AYvPOdTpcIDqOhxsBHRwC7U","sig":"MEYCIQDKqGjOxGPwzZaura5dIULedlZPvFIMEOinBvSkvu+w+AIhANI4j+W/BifORVTV09AY21qyIW+U2/bI0Gr8OtMu9UXg"}]},"_npmUser":{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"},"directories":{},"maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"_npmOperationalInternal":{"host":"s3://npm-registry-packages-npm-production","tmp":"tmp/blackduck-polaris-mcp-server_0.3.1_1774991921295_0.48689881472916285"},"_hasShrinkwrap":false}},"time":{"created":"2026-03-31T16:44:17.084Z","modified":"2026-03-31T21:18:41.573Z","0.1.0":"2026-03-31T16:44:17.297Z","0.2.0":"2026-03-31T17:32:19.744Z","0.2.1":"2026-03-31T17:40:03.615Z","0.2.2":"2026-03-31T17:51:41.319Z","0.3.0":"2026-03-31T19:27:23.597Z","0.3.1":"2026-03-31T21:18:41.442Z"},"license":"MIT","keywords":["mcp","model-context-protocol","mcp-server","blackduck","black-duck","polaris","security","sast","sca","dast","vulnerability","security-scanning","appsec","application-security","sbom","spdx","cyclonedx","code-analysis","static-analysis","software-composition-analysis","devsecops","claude","claude-code","ai-tools","copilot"],"description":"Feature-rich MCP server for Black Duck Polaris — trigger SAST/SCA/DAST scans, query findings, generate reports (SBOM, SPDX, CycloneDX), manage policies, triage issues, and more. Works with Claude Code, Claude Desktop, GitHub Copilot, Cursor, and any MCP-c","maintainers":[{"name":"easygoingcoder","email":"zmyje048dqw015kcjv7u@gmail.com"}],"readme":"# blackduck-polaris-mcp-server\n\n[![npm version](https://img.shields.io/npm/v/blackduck-polaris-mcp-server.svg)](https://www.npmjs.com/package/blackduck-polaris-mcp-server)\n[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)\n[![Node.js](https://img.shields.io/badge/node-%3E%3D18.0.0-brightgreen.svg)](https://nodejs.org/)\n\nThe most comprehensive MCP (Model Context Protocol) server for **Black Duck Polaris**. Trigger SAST/SCA/DAST scans, query findings, triage issues, generate and download reports (SBOM, SPDX, CycloneDX), manage policies, and more — all from your AI coding assistant.\n\n## Works With\n\nClaude Code | Claude Desktop | GitHub Copilot | Cursor | Windsurf | VS Code (MCP extensions) | any MCP-compatible AI tool\n\n## Quick Start\n\n### Prerequisites\n\nYou need a Polaris API token. Generate one at **Profile > Account > Access Tokens** in your Polaris instance.\n\n### Claude Code\n\n```bash\nclaude mcp add blackduck-polaris -e POLARIS_URL=https://your-instance.polaris.blackduck.com -e POLARIS_API_TOKEN=your-token -- npx blackduck-polaris-mcp-server\n```\n\n### Claude Desktop (`claude_desktop_config.json`)\n\n```json\n{\n  \"mcpServers\": {\n    \"blackduck-polaris\": {\n      \"command\": \"npx\",\n      \"args\": [\"blackduck-polaris-mcp-server\"],\n      \"env\": {\n        \"POLARIS_URL\": \"https://your-instance.polaris.blackduck.com\",\n        \"POLARIS_API_TOKEN\": \"your-token\"\n      }\n    }\n  }\n}\n```\n\n### Cursor / VS Code\n\nAdd to your MCP settings:\n\n```json\n{\n  \"blackduck-polaris\": {\n    \"command\": \"npx\",\n    \"args\": [\"blackduck-polaris-mcp-server\"],\n    \"env\": {\n      \"POLARIS_URL\": \"https://your-instance.polaris.blackduck.com\",\n      \"POLARIS_API_TOKEN\": \"your-token\"\n    }\n  }\n}\n```\n\n## Features — 66 Tools Across 10 Domains\n\n### Portfolio Navigation (8 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_portfolios` | List all portfolios |\n| `polaris_list_applications` | List applications in a portfolio |\n| `polaris_create_application` | Create new application |\n| `polaris_update_application` | Update application |\n| `polaris_delete_application` | Delete application |\n| `polaris_list_projects` | List projects in an application |\n| `polaris_create_project` | Create new project |\n| `polaris_list_branches` | List branches in a project |\n\n### Findings & Triage (10 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_issues` | Query issues with RSQL filter (severity, tool, CWE, status) |\n| `polaris_get_issue` | Get full issue details |\n| `polaris_get_triage_history` | View triage audit trail |\n| `polaris_get_detection_history` | View detection change history |\n| `polaris_triage_issue` | Dismiss, change severity, assign, update status |\n| `polaris_list_occurrences` | List issue occurrences with filter |\n| `polaris_get_occurrence_snippet` | Get vulnerable source code snippet |\n| `polaris_get_remediation` | AI-assisted remediation guidance (Black Duck Assist) |\n| `polaris_submit_remediation_feedback` | Feedback on AI remediation quality |\n| `polaris_get_issue_counts` | Aggregated issue counts by severity/type |\n\n### Scans / Test Management (8 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_trigger_scan` | **Trigger SAST/SCA/DAST scan on a branch** |\n| `polaris_list_tests` | List scans with filter |\n| `polaris_get_test` | Get scan status (QUEUED, RUNNING, COMPLETED, FAILED) |\n| `polaris_cancel_test` | Cancel a running scan |\n| `polaris_get_test_metrics` | Issue counts and metrics for a scan |\n| `polaris_get_test_comments` | Get scan comments |\n| `polaris_list_test_artifacts` | List scan artifacts |\n| `polaris_create_test_artifact` | Upload artifact for external analysis |\n\n### Reports (6 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_report_types` | List all report types |\n| `polaris_generate_report` | **Generate report (SBOM, SPDX, CycloneDX, executive summary, etc.)** |\n| `polaris_list_reports` | List generated reports |\n| `polaris_get_report_status` | Check report generation status |\n| `polaris_download_report` | **Download completed report** |\n| `polaris_delete_report` | Delete a report |\n\n**Supported report types:** Developer Detail SCA, Developer Detail Static, Developer Detail Dynamic, Executive Summary, Issue Overview, Issue Summary, Security Audit, SBOM, SPDX v2.3, CycloneDX v1.4, CycloneDX v1.6, Standard Compliance, Standard Compliance Detail, Test Summary\n\n### Policies (7 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_issue_policies` | List issue policies |\n| `polaris_create_issue_policy` | Create policy (build break, email, Jira ticket) |\n| `polaris_update_issue_policy` | Update policy |\n| `polaris_delete_issue_policy` | Delete policy |\n| `polaris_list_scheduling_policies` | List test scheduling policies |\n| `polaris_create_scheduling_policy` | Create automated scan schedule |\n| `polaris_assign_policy` | Assign policy to project/application/branch |\n\n### SCM / Repository Integration (7 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_repos` | List connected repositories |\n| `polaris_get_repo` | Get repository details |\n| `polaris_update_repo` | Update repository settings |\n| `polaris_list_repo_branches` | List repository branches |\n| `polaris_test_repo_connection` | Test SCM connectivity |\n| `polaris_bulk_import_repos` | Bulk import repos from SCM |\n| `polaris_list_scm_providers` | List supported SCM providers |\n\n### Bug Tracking Integration (5 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_bugtracker_configs` | List Jira/Azure DevOps configurations |\n| `polaris_create_bugtracker_config` | Create bug tracker integration |\n| `polaris_update_bugtracker_config` | Update integration config |\n| `polaris_export_issues_to_tracker` | **Export issues to Jira/Azure DevOps** |\n| `polaris_test_jira_connection` | Test Jira connectivity |\n\n### Audit (3 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_get_audit_logs` | Query audit logs (category, user, date range) |\n| `polaris_export_audit_logs` | Export audit logs as CSV |\n| `polaris_list_audit_categories` | List audit event categories |\n\n### Identity & Access Management (9 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_list_users` | List organization users |\n| `polaris_create_user` | Create user |\n| `polaris_get_user` | Get user details |\n| `polaris_update_user` | Update user role/details |\n| `polaris_list_groups` | List groups |\n| `polaris_create_group` | Create group |\n| `polaris_get_current_user` | Get authenticated user info |\n| `polaris_create_api_token` | Create API token |\n| `polaris_create_service_account_token` | Create service account token |\n\n### Notifications (3 tools)\n\n| Tool | Description |\n|------|-------------|\n| `polaris_get_notification_preferences` | Get org notification preferences |\n| `polaris_update_notification_preferences` | Update notification preferences |\n| `polaris_get_notification_subscriptions` | Get user event subscriptions |\n\n## Example Workflows\n\n### Scan a branch and review findings\n\n```\nYou: Trigger a SAST and SCA scan on the main branch of project X\nAI: [calls polaris_trigger_scan] Scan triggered, test ID: abc-123\n\nYou: Check the scan status\nAI: [calls polaris_get_test] Status: COMPLETED. 12 new issues found.\n\nYou: Show me the critical issues\nAI: [calls polaris_list_issues with severity filter] Found 3 critical issues...\n\nYou: Show me the code for the first one\nAI: [calls polaris_get_occurrence_snippet] Here's the vulnerable code at line 42...\n\nYou: Get remediation advice\nAI: [calls polaris_get_remediation] Black Duck Assist suggests...\n```\n\n### Generate a compliance report\n\n```\nYou: Generate an SPDX report for application Y\nAI: [calls polaris_generate_report] Report queued, ID: rpt-456\n\nYou: Is it ready?\nAI: [calls polaris_get_report_status] Status: COMPLETED\n\nYou: Download it\nAI: [calls polaris_download_report] Here's your SPDX v2.3 report...\n```\n\n### Export issues to Jira\n\n```\nYou: Show me all high-severity SAST issues\nAI: [calls polaris_list_issues] Found 8 high-severity SAST issues\n\nYou: Export the first 3 to Jira\nAI: [calls polaris_export_issues_to_tracker] 3 issues exported to Jira\n```\n\n## Comparison with Existing MCP Servers\n\n| Feature | This Server | mtgibbs/polaris-mcp | @black-duck/mcp-server |\n|---------|:-----------:|:-------------------:|:----------------------:|\n| Portfolio navigation | Full CRUD | Read only | - |\n| Issue querying | RSQL filters | Basic | - |\n| Issue triage | Dismiss/assign/severity | - | - |\n| AI remediation | Read + feedback | Read only | - |\n| **Trigger scans** | **SAST/SCA/DAST** | **-** | **Local only** |\n| **Report generation** | **14 types** | **-** | **-** |\n| **Report download** | **PDF/JSON/XML** | **-** | **-** |\n| **Policy management** | **Full CRUD** | **-** | **-** |\n| SCM integration | Full | - | - |\n| Bug tracker export | Jira/ADO | - | - |\n| Audit logs | Query + CSV export | - | - |\n| IAM | Users/groups/tokens | - | - |\n| Notifications | Preferences | - | - |\n| **Total tools** | **66** | **~10** | **~3** |\n\n## Environment Variables\n\n| Variable | Required | Description |\n|----------|----------|-------------|\n| `POLARIS_URL` | Yes | Your Polaris instance URL (e.g., `https://polaris.blackduck.com`) |\n| `POLARIS_API_TOKEN` | Yes | API token from Profile > Account > Access Tokens |\n\n## Development\n\n```bash\ngit clone https://github.com/your-username/blackduck-polaris-mcp-server.git\ncd blackduck-polaris-mcp-server\nnpm install\nnpm run build\nnpm start\n```\n\n### Testing with MCP Inspector\n\n```bash\nPOLARIS_URL=https://... POLARIS_API_TOKEN=... npx @modelcontextprotocol/inspector node build/index.js\n```\n\n## License\n\nMIT\n","readmeFilename":"README.md"}