{"id":"enemyrr-mcp-mysql-server","name":"mcp-mysql-server","homepage":null,"repo_url":"https://github.com/enemyrr/mcp-mysql-server","category":"databases","subcategories":[],"tags":["mcp","mysql","database","schema-mgmt","tools","typescript"],"what_it_does":"mcp-mysql-server is a Model Context Protocol (MCP) server that connects to a MySQL database and exposes tools for querying data and managing schema (e.g., list/describe tables, create/alter/drop columns/tables, and browse schema/resources).","use_cases":["Allowing an AI assistant to run read-only SELECT queries against a MySQL database","Assisting with schema exploration and documentation (tables/columns/indexes/FKs)","Generating or executing SQL for CRUD and light schema management workflows","Helping developers prototype SQL queries with parameterized inputs"],"not_for":["Untrusted or fully automated execution without human review (it can run write/destructive queries)","Public-facing or multi-tenant deployments where strong tenant isolation is required","Highly regulated environments needing detailed compliance attestations beyond what is documented"],"best_when":"Used in a developer-controlled environment (local/dev or trusted internal systems) where database credentials and scope of operations can be managed carefully.","avoid_when":"Avoid when you cannot control which schemas/operations the agent can perform, or when you require strict safety rails for DDL/DML.","alternatives":["Use a hosted database tool with an explicit query sandbox (read-only) and strong allowlists","Direct MySQL access via an internal API with RBAC and audit logging","Other MCP database servers with documented permissioning and safer defaults"],"af_score":54.5,"security_score":43.5,"reliability_score":32.5,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T15:28:00.990587+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["MySQL credentials provided via DATABASE_URL/.env (user/password/host/database) or via the connect_db tool arguments (direct credentials or URL)"],"oauth":false,"scopes":false,"notes":"No user-level auth is documented for the MCP server itself; authentication appears to be delegated to MySQL credentials supplied to the server. Tool-level authorization/scoping is not described in the README."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"README does not describe any hosted pricing; appears to be self-hosted open-source (MIT) distributed via npm."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":54.5,"security_score":43.5,"reliability_score":32.5,"mcp_server_quality":70.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":55.0,"rate_limit_clarity":0.0,"tls_enforcement":20.0,"auth_strength":55.0,"scope_granularity":10.0,"dependency_hygiene":65.0,"secret_handling":70.0,"security_notes":"README claims prepared statement support and secure password handling via environment variables, plus connection cleanup and query validation. However, it does not document transport security requirements (TLS), server-side authentication/authorization, fine-grained scopes, or explicit audit logging. Presence of schema-destructive tools (drop/truncate) increases risk if an agent is not constrained.","uptime_documented":0.0,"version_stability":55.0,"breaking_changes_history":30.0,"error_recovery":45.0,"idempotency_support":"false","idempotency_notes":"Schema/data write operations (execute/insert/update/delete, drop/truncate, create/alter/drop column/table) may not be idempotent; README does not state idempotency guarantees or safe retry semantics.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Potentially destructive tools exist (drop_table, truncate_table) that require 'confirm' according to README, but a model/agent could still trigger them if not constrained.","The server appears to execute arbitrary SQL for query/execute; agents must be restricted (read-only vs write) and use strict query generation rules.","Connection lifecycle/reset behavior is not specified in README; agents may need to ensure a valid connection via connect_db before operations.","No tool-availability/permissioning allowlists are documented; enforce safety externally if needed."]}}