VS Code extension that automatically registers the Qualys MCP Server, making all 7 security tools available in GitHub Copilot Chat and other MCP-compatible AI assistants.
Settings
Configure via Cmd+, → search "Qualys MCP":
Setting
Type
Default
Description
qualysMcp.username
string
""
Qualys platform username
qualysMcp.password
string
""
Qualys platform password
qualysMcp.pod
enum
US1
Platform POD
qualysMcp.baseUrl
string
""
Override API URL
qualysMcp.gatewayUrl
string
""
Override gateway URL
qualysMcp.sslVerify
boolean
true
TLS verification
qualysMcp.timeoutMs
number
60000
Request timeout (ms)
qualysMcp.cacheTtlMs
number
300000
Cache TTL (ms)
Usage
Once configured, the server appears in the MCP Servers panel. All tools are available in Copilot Chat:
"Investigate CVE-2024-3094"
"Show me the security overview for this week"
"What's our PCI compliance status?"
"What are the top critical vulnerabilities to remediate?"
"List all web application risks"
"Check our cloud posture on AWS"
Available Tools
Tool
Description
qualys_investigate
Deep-dive CVE, host, IP, or threat actor
qualys_assess_risk
Cross-domain risk assessment
qualys_check_compliance
Compliance posture checking
qualys_plan_remediation
Patch priorities and remediation planning
qualys_security_overview
Security briefing
qualys_reports
Report management
qualys_cache_status
Cache management
Troubleshooting
Server not appearing: Check that username, password, and POD are configured
Connection errors: Verify your Qualys credentials and POD setting
Timeout errors: Increase qualysMcp.timeoutMs in settings
Self-signed certs: Set qualysMcp.sslVerify to false
