Skip to main content

Announcing StackOne Defender: leading open-source prompt injection guard for your agent Read More

Connect

Connectors Agent Auth MCP Connector Builder

Optimize

Tool Discovery Falcon Engine

Secure

Defender
Connectors

HRIS / HCM

Employee Onboarding Employee Offboarding

Recruiting

Application Screening Interview Scheduling

Customer Support

Ticket Triage Voice Call Summarization

Sales & CRM

Deal Risk Scoring Lead Qualification

Accounting & Finance

Invoice Processing Month-End Accruals

Marketing

Campaign Reports Lead Nurture Sequences
View all use cases

Developers

Docs Changelog Status

Learn

Blog Case Studies Events Partners
Pricing
Login Book Demo Start Free

Qlik MCP Server
for AI Agents

Production-ready Qlik MCP server with 100 extensible actions — plus built-in authentication, security, and optimized execution.

Start Free Book Demo Read Docs →
Qlik logo
Qlik MCP Server
Built by StackOne StackOne

Coverage

100 Agent Actions

Create, read, update, and delete across Qlik — and extend your agent's capabilities with custom actions.

MCP Actions → Create Actions →

Authentication

Agent Tool Authentication

Per-user OAuth in one call. Your Qlik MCP server gets session-scoped tokens with zero credentials stored on your infra.

Agent Auth →

Security

Agent Protection

Every Qlik tool response scanned for prompt injection in milliseconds — 88.7% accuracy, all running on CPU.

Prompt Injection Defense →

Performance

Max Agent Context. Min Cost.

Free up to 96% of your agent's context window to enhance reasoning and reduce cost, on every Qlik call.

Tools Discovery →

What is the Qlik MCP Server?

A Qlik MCP server lets AI agents read and write Qlik data through the Model Context Protocol — Anthropic's open standard for connecting LLMs to external tools. StackOne's Qlik MCP server ships with 100 pre-built actions, fully extensible via the Connector Builder — plus managed authentication, prompt injection defense, and optimized agent context. Connect it from MCP clients like Claude Desktop, Cursor, and VS Code, or from agent frameworks like OpenAI Agents SDK, LangChain, and Vercel AI SDK.

All Qlik MCP Tools and Actions

Every action from Qlik's API, ready for your agent. Create, read, update, and delete — scoped to exactly what you need.

Users

  • Create User

    Create a new user in the Qlik Cloud tenant

  • List Users

    Retrieve a paginated list of users in the Qlik Cloud tenant

  • Get User

    Retrieve details of a specific user by ID

  • Delete User

    Delete a user from the Qlik Cloud tenant

Spaces

  • Create Space

    Creates a space

  • List Spaces

    Retrieves spaces that the current user has access to and match the query

  • Get Space

    Retrieves a single space by ID

  • Update Space

    Updates a space

  • Delete Space

    Deletes a space

An Assignment For A Spaces

  • Retrieve An Assignment For A Space

    Retrieves a single assignment by assignment ID

  • Update An Assignment For A Space

    Updates a single assignment by assignment ID

A Space Shares

  • Create A Space Share

    Creates a share

  • Retrieve A Space Share

    Retrieves a single space share by ID

  • Delete A Space Share

    Deletes a space share

Groups

  • Create Group

    Creates a new group

  • List Groups

    Returns a list of groups with cursor-based pagination

  • Get Group

    Returns the requested group

  • Update Group

    Updates the requested group

  • Delete Group

    Deletes the requested group

Roles

  • Create Role

    Creates a custom role

  • List Roles

    Returns a list of roles using cursor-based pagination

  • Get Role

    Returns the requested role

  • Update Role

    Updates the requested role

  • Delete Role

    Deletes the requested role

Items

  • List Items

    Lists items that the user has access to

  • Get Item

    Finds and returns an item

  • Update Item

    Updates an item

  • Delete Item

    Deletes an item and removes the item from all collections

Collections

  • Create Collection

    Creates and returns a new collection

  • List Collections

    Retrieves the collections that the user has access to

  • Get Collection

    Finds and returns a collection

  • Update Collection

    Updates a collection's name and description

  • Delete Collection

    Deletes a collection and removes all items from the collection

An Items

  • Get An Item

    Finds and returns an item in a specific collection

  • Remove An Item

    Removes an item from a collection

Automations

  • Create Automation

    Creates a new automation. The requesting user must be assigned the `AutomationCreator` role.

  • List Automations

    Retrieves a list of the automations that the requesting user has access to.

  • Get Automation

    Retrieves the full definition of an automation. The requesting user must be the owner of the automation.

  • Update Automation

    Updates the full definition of an automation. The requesting user must be the owner of the automation.

  • Move Automation

    Changes the owner of an automation to another user. This action removes the history and change logs of this automation. All linked connections used in the automation are detached and not moved to the new owner.

  • Delete Automation

    Deletes an automation. The requesting user must be the owner of the automation, or be assigned the `TenantAdmin` role.

Automation Runs

  • List Automation Runs

    Retrieves a list of runs for a specific automation. The requesting user must be the owner of the automation, or be assigned the `TenantAdmin` role.

  • Get Automation Run

    Retrieves a specific run for an automation. The requesting user must be the owner of the automation.

Audit Events

  • List Audit Events

    Retrieves list of events for subscribed services for your tenant. Stores events for 90 days, after which they can be accessed via `/v1/audits/archive`.

  • Get Audit Event

    Finds and returns a specific audit events for the given event ID.

API Keys

  • Create API Key

    Creates an API key for a user or for configuring SCIM

  • List API Keys

    Lists API keys for the tenant with cursor-based pagination

  • Get API Key

    Returns an API key for a given ID

  • Update API Key

    Updates an API key description using JSON Patch operations

  • Delete API Key

    Deletes or revokes an API key

API Keys Configurations

  • Get API Keys Configuration

    Retrieves the API key configuration for a tenant

  • Update API Keys Configuration

    Updates the API keys configuration for a tenant using JSON Patch operations

Tasks

  • List Tasks

    List tasks

  • Get Task

    Get a task

  • Delete Task

    Delete a task

Extensions

  • List Extensions

    List all extensions

  • Get Extension

    Get a specific extension

  • Delete Extension

    Delete a specific extension

Brands

  • List Brands

    List brands

  • Get Brand

    Retrieve a brand

  • Update Brand

    Update a brand

  • Delete Brand

    Delete a brand

Brand Files

  • Get Brand File

    Download brand file

  • Delete Brand File

    Delete a brand file

Other (36)

  • Add Item To Collection

    Adds an item to a collection and returns the item

  • Get Current User

    Retrieve the currently authenticated user's profile

  • List Assignments For A Space

    Retrieves the assignments of the space matching the query

  • List Space Shares

    Retrieves the shares of the space matching the query

  • List Space Types

    Gets a list of distinct space types available for use in the tenant

  • Get Group Settings

    Returns the tenant's group settings

  • List Collections Of An Item

    Finds and returns the collections (and tags) of an item

  • Get Items Settings

    Finds and returns the items service settings for the current tenant

  • List Items In A Collection

    Retrieves items from a collection that the user has access to

  • Get User's Favorites Collection

    Lists the user's favorites collection

  • Export Automation Run Log

    Retrieves the URL for the debug log of a specific automation run. The requesting user must be the owner of the automation.

  • Get Automation Usage Metrics

    Retrieves paginated usage metrics for automations. The requesting user must be assigned the `TenantAdmin` role.

  • List Archived Audit Events

    Retrieves audit events from long-term storage. Returns all archived audit events for the specified date and tenant, formatted as a JSON array. Archived events are retained for the full lifetime of the tenant, and are not removed or size-limited.

  • Get Audit Settings

    Returns the server configuration options. It includes options that represent the server configuration state and parameters that were used to run the server with certain functionality.

  • List Audit Sources

    Finds and returns the list of possible event sources for this tenant.

  • List Audit Event Types

    Finds and returns the list of possible event types for this tenant.

  • Get Extension Archive

    Download extension as an archive

  • Get Extension File

    Download file from extension archive

  • Get Active Brand

    Retrieve active brand

  • Delete An Assignment

    Deletes an assignment

  • Count Users

    Get the total count of users in the tenant

  • Filter Users

    Filter users using POST request with complex filter criteria

  • Invite Users

    Send invitation emails to new users

  • Assign User Or Group To A Space

    Creates an assignment for a user or group (assignee) to a space with the specified roles

  • Filter Groups

    Retrieves a list of groups matching the filter using advanced query string

  • Change Automation Owner

    Changes the owner of an automation to another user. This action removes the history and change logs of this automation. All linked connections used in the automation are detached and not moved to the new owner.

  • Change Automation Space

    Changes the space of an automation by specifying a new space.

  • Duplicate Automation

    Duplicates an existing automation. The requesting user must be the owner of the automation.

  • Disable Automation

    Disables an automation so that it cannot be run. The requesting user must be the owner of the automation, or be assigned the `TenantAdmin` role.

  • Enable Automation

    Enables an automation so that it can be run. The requesting user must be the owner of the automation, or be assigned the `TenantAdmin` role.

  • Run Automation

    Creates a runs for a specific automation. The requesting user must be the owner of the automation.

  • Retry Automation Run

    Retries a specific run by creating a new run using the same inputs. The requesting user must be the owner of the automation.

  • Stop Automation Run

    Forcefully stops an automation run immediately. The requesting user must be the owner of the automation.

  • Start Task

    Start a task

  • Activate Brand

    Activate a brand

  • Deactivate Brand

    Deactivate a brand

Set Up Your Qlik MCP Server in Minutes

One endpoint. Any framework. Your agent is talking to Qlik in under 10 lines of code.

MCP Clients

Agent Frameworks

Claude Desktop
{
  "mcpServers": {
    "stackone": {
      "command": "npx",
      "args": [
        "-y",
        "mcp-remote@latest",
        "https://api.stackone.com/mcp?x-account-id=<account_id>",
        "--header",
        "Authorization: Basic <YOUR_BASE64_TOKEN>"
      ]
    }
  }
}

More Data & Analytics MCP Servers

Tableau

114+ actions

SurveyMonkey

104+ actions

Microsoft Excel

101+ actions

Snowflake

80+ actions

PostHog

63+ actions

Amplitude

53+ actions

Gong

34+ actions

All Data & Analytics MCP Servers →

Qlik MCP Server Resources

MCP Code Mode: Keeping Tool Responses Out of Agent Context

Anthropic's code_execution processes data already in context. Custom MCP code mode keeps raw tool responses in a sandbox. 14K tokens vs 500.

11 min

Comparing BM25, TF-IDF, and Hybrid Search for MCP Tool Discovery

Benchmarking BM25, TF-IDF, and hybrid search for MCP tool discovery across 916 tools. The 80/20 TF-IDF/BM25 hybrid hits 21% Top-1 accuracy in under 1ms.

10 min

Indirect Prompt Injection Defense for MCP Tools: A Technical Guide

MCP tools that read emails, CRM records, and tickets are indirect prompt injection vectors. Here's how we built a two-tier defense that scans tool results in ~11ms.

12 min

Qlik MCP Server FAQ

Qlik MCP server vs direct API integration — what's the difference?
A Qlik MCP server and direct API integration serve different use cases. Direct API integration is for software-to-software — backend code calling Qlik. A Qlik MCP server is for AI agents — MCP clients like Claude and Cursor, plus framework agents built with OpenAI, LangChain, or Vercel AI — discovering and calling Qlik at runtime. StackOne provides both.
How does Qlik authentication work for AI agents?
Qlik authentication for AI agents works through a StackOne Connect Session. Create one via the dashboard or the SDK — you get an auth link and ready-to-paste config for Claude Desktop, Cursor, and other MCP clients. Your user authenticates their own Qlik account; StackOne handles token exchange, storage, and refresh. Credentials never reach the LLM, and each user is isolated via origin_owner_id.
Are Qlik MCP tools vulnerable to prompt injection?
Yes — Qlik MCP tools can be vulnerable to indirect prompt injection. Any tool that reads user-written content — documents, messages, tickets, records, or free-text fields — is a potential vector. StackOne Defender scans every tool response before it enters the agent's context — regex patterns in ~1ms, then a MiniLM classifier in ~4ms. 88.7% accuracy, CPU-only.
What is the context bloat of a Qlik agent and how do I avoid it?
Context bloat happens when Qlik tool schemas and API responses eat your Qlik agent's memory, preventing it from reasoning effectively. A single Qlik query can return a massive JSON response, and connecting multiple tools compounds the problem. Tools Discovery and Code Mode reduce context bloat — loading only relevant tools per query and keeping raw responses out of the agent's context.
Can I limit which actions my Qlik agent can access?
Yes — you can limit which actions your Qlik agent can access directly from the StackOne dashboard. Toggle actions on or off, or restrict them to specific accounts, with no code changes to your agent. Session tokens can be scoped to exact actions so if one leaks, exposure stays contained.
Can I create custom agent actions for my Qlik MCP server?
Yes — you can create custom agent actions for your Qlik MCP server using Connector Builder. It's an integration agent your coding assistant (Claude Code, Cursor, or Copilot) can invoke to research Qlik's API, generate production-ready connector YAML, test against the live API, and validate before you ship.
When should I NOT use a Qlik MCP server?
Skip a Qlik MCP server if your integration is purely software-to-software — direct Qlik API integration is simpler when no AI agent is involved. For deterministic, compliance-critical operations (financial transactions, regulatory reporting), direct API gives you predictable behavior without agent-driven decision-making. MCP shines when AI agents need to dynamically discover and call Qlik actions at runtime.
What AI frameworks and AI clients does the StackOne Qlik MCP server support?
The StackOne Qlik MCP server supports both. MCP clients (paste-and-go apps): Claude Desktop, Claude Code, Cursor, VS Code, Goose. Agent frameworks (code SDKs you build with): OpenAI Agents SDK, Anthropic, Vercel AI, Google ADK, CrewAI, Pydantic AI, LangChain, LangGraph, Azure AI Foundry.

Put your AI agents to work

All the tools you need to build and scale AI agent integrations, with best-in-class connectivity, execution, and security.

Start Free Book Demo