mcp-db-server

An MCP server (Spring AI based) that exposes database access to an AI agent, intended to execute SQL queries against one or more configured data sources, with support for SSE transport and additional SQL safety controls and Groovy-based extensions.

Evaluated Apr 04, 2026 (16d ago)
Repo ↗ Ai Ml mcp-server database sql sse spring-ai groovy jdbc agent-tools
⚙ Agent Friendliness
31
/ 100
Can an agent use this?
🔒 Security
26
/ 100
Is it safe for agents?
⚡ Reliability
20
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
55
Documentation
55
Error Messages
0
Auth Simplicity
20
Rate Limits
0

🔒 Security

TLS Enforcement
30
Auth Strength
10
Scope Granularity
20
Dep. Hygiene
50
Secret Handling
30

README indicates SQL safety controls and a desire to prevent dangerous SQL, plus configurable datasources with usernames/passwords. However, no authentication for the MCP endpoint is documented, no TLS requirement is stated, and no details are provided about scope/authorization model. Database credentials should be treated as sensitive; the README shows password in config as a value, but does not describe secret management best practices.

⚡ Reliability

Uptime/SLA
0
Version Stability
30
Breaking Changes
30
Error Recovery
20
AF Security Reliability

Best When

Teams need an agent to query databases via MCP using SSE, with clearly configured data sources and SQL safety rules.

Avoid When

When you cannot restrict accounts/permissions, or you lack the ability to validate/monitor the generated SQL and results.

Use Cases

  • Agent-assisted querying of relational databases
  • Building internal analytics workflows where an LLM can run controlled SQL
  • Rapid prototyping of agent-to-database tools across multiple DB engines

Not For

  • Untrusted public exposure without strong network/auth controls
  • Running arbitrary destructive SQL in production without strict safety policies
  • Use as a general-purpose “SQL execution for anyone” service

Interface

REST API
No
GraphQL
No
gRPC
No
MCP Server
Yes
SDK
No
Webhooks
No

Authentication

OAuth: No Scopes: No

No authentication/authorization mechanism is described in the provided README (only a local SSE URL example and JDBC datasource credentials).

Pricing

Free tier: No
Requires CC: No

Agent Metadata

Pagination
none
Idempotent
False
Retry Guidance
Not documented

Known Gotchas

  • Executing SQL generated by an LLM can cause unintended side effects; ensure SQL safety configuration and least-privilege DB users.
  • SSE transport may require client-specific configuration (README notes some clients need manual SSE selection).
  • Multiple database/data source routing requires correct datasource.yml configuration.

Alternatives

Dedicated database query gateways with explicit allowlists Vendor-specific BI/query APIs (e.g., Read-only SQL endpoints) Other MCP DB servers (e.g., MySQL-focused) Custom middleware that uses parameterized queries and strict schemas

Full Evaluation Report

Comprehensive deep-dive: security analysis, reliability audit, agent experience review, cost modeling, competitive positioning, and improvement roadmap for mcp-db-server.

AI-powered analysis · PDF + markdown · Delivered within 30 minutes

$99

Package Brief

Quick verdict, integration guide, cost projections, gotchas with workarounds, and alternatives comparison.

Delivered within 10 minutes

$3

Score Monitoring

Get alerted when this package's AF, security, or reliability scores change significantly. Stay ahead of regressions.

Continuous monitoring

$3/mo
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-04-04.

8642
Packages Evaluated
17761
Need Evaluation
586
Need Re-evaluation
Community Powered