{"id":"ericzakariasson-pg-mcp-server","name":"pg-mcp-server","homepage":null,"repo_url":"https://github.com/ericzakariasson/pg-mcp-server","category":"infrastructure","subcategories":[],"tags":["mcp","postgres","database","typescript","stdio","http","agent-tools"],"what_it_does":"Provides a Model Context Protocol (MCP) server that connects to a PostgreSQL database and exposes MCP tools/resources for listing tables, retrieving table schema/sample data, and executing SQL queries through a controlled interface.","use_cases":["LLM-assisted database exploration (schemas, sample data)","Querying PostgreSQL from an MCP-capable client via a standardized interface","Building agent workflows that need read-only (or optionally write) access to a Postgres database"],"not_for":["Publicly exposed production databases without additional network/auth controls","Use cases requiring fine-grained, per-user permissions beyond what the database user allows","Workloads needing strict audit/compliance guarantees (not documented here)"],"best_when":"You run the MCP server locally or in a trusted network and want an agent-friendly bridge to Postgres with a simple configuration via DATABASE_URL.","avoid_when":"You need strong transport security guarantees for remote clients, fine-grained authorization, or well-defined rate-limit/retry semantics for high-throughput production use.","alternatives":["Direct SQL access from the agent using a restricted DB user (with custom guardrails)","PostgREST/GraphQL layers for typed access (less flexible for ad-hoc exploration)","Other MCP database servers or data-access tools with explicit permissioning"],"af_score":55.8,"security_score":40.2,"reliability_score":28.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"high","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-03-30T13:39:53.296220+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Implicit database authentication via DATABASE_URL (Postgres user/password or connection string)"],"oauth":false,"scopes":false,"notes":"No separate user authentication for the MCP server is described; access is governed by the Postgres credentials and the DANGEROUSLY_ALLOW_WRITE_OPS flag."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Open-source npm package (MIT) per provided metadata; no pricing details in the provided content."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":55.8,"security_score":40.2,"reliability_score":28.8,"mcp_server_quality":78.0,"documentation_accuracy":75.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":85.0,"rate_limit_clarity":0.0,"tls_enforcement":35.0,"auth_strength":40.0,"scope_granularity":20.0,"dependency_hygiene":55.0,"secret_handling":55.0,"security_notes":"Security largely depends on protecting the network and using a least-privilege Postgres user in DATABASE_URL. HTTP transport is mentioned without documented auth; there is an option to enable write ops (DANGEROUSLY_ALLOW_WRITE_OPS) which increases risk if misconfigured. TLS/HTTP security details and error-safe handling of secrets are not specified in the provided content.","uptime_documented":0.0,"version_stability":55.0,"breaking_changes_history":40.0,"error_recovery":20.0,"idempotency_support":"false","idempotency_notes":"The exposed 'query' tool can execute arbitrary SQL; idempotency cannot be guaranteed and is not documented.","pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Write operations are disabled by default but can be enabled; agents should respect DANGEROUSLY_ALLOW_WRITE_OPS and database permissions.","For safety, the Postgres user in DATABASE_URL should be restricted (e.g., read-only) when using agent-driven SQL.","HTTP transport is described but no authentication/rate-limit behavior is documented; do not expose to untrusted networks."]}}