{"id":"mgorunuch-memgraph-mcp-server","name":"memgraph-mcp-server","homepage":null,"repo_url":"https://github.com/mgorunuch/memgraph-mcp-server","category":"infrastructure","subcategories":[],"tags":["mcp","memgraph","graph-database","cypher","agent-tools","go"],"what_it_does":"Provides an MCP server that lets an agent execute Cypher queries against a Memgraph database and fetch schema information, with a default block on destructive/unsafe queries unless explicitly enabled.","use_cases":["Agent-driven read-only exploration of a Memgraph graph (e.g., inspect entities/relations)","Generating Cypher to answer questions about a graph","Schema discovery for prompt/tool planning via get_schema"],"not_for":["Executing destructive writes/DDL in a multi-tenant or high-risk setting","Environments requiring strong centralized authZ/auditing beyond Memgraph credentials","Use without careful query constraints/approval when unsafe operations are possible"],"best_when":"You want an MCP-compatible interface for graph querying and can control/limit agent permissions and query safety (unsafe=false by default).","avoid_when":"You cannot safely control the agent’s queries or you require documented operational protections like rate limiting, audit logs, and robust error taxonomy.","alternatives":["Direct Memgraph client libraries (bolt/Cypher) integrated into your app/agent framework","Generic database MCP servers (if available) that support Memgraph or Bolt/Cypher","Custom MCP server wrapper around Memgraph using your own safety and auth policies"],"af_score":59.8,"security_score":41.0,"reliability_score":23.8,"package_type":"mcp_server","discovery_source":["github"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T21:21:31.630984+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":true,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Memgraph username/password via environment variables or CLI flags","No-auth mode via default bolt://localhost:7687 without credentials"],"oauth":false,"scopes":false,"notes":"Authentication is delegated to Memgraph connectivity. There is no mention of per-tool auth scopes; safety is handled via blocking of unsafe Cypher unless 'unsafe: true' is used in run_query."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Self-hosted open-source tool implied; no usage pricing described in provided content."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":59.8,"security_score":41.0,"reliability_score":23.8,"mcp_server_quality":75.0,"documentation_accuracy":70.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":85.0,"rate_limit_clarity":10.0,"tls_enforcement":30.0,"auth_strength":55.0,"scope_granularity":20.0,"dependency_hygiene":35.0,"secret_handling":60.0,"security_notes":"Mentions blocking destructive queries (DELETE/REMOVE/DROP/CREATE/MERGE/SET) by default unless unsafe: true is provided to run_query—this is a positive safety control. However, TLS enforcement and transport security are not documented in the provided content; auth is limited to Memgraph user/password (or none by default). There is no mention of fine-grained authorization scopes for tools or request-level auditing. Rate limits and robust operational protections are not described.","uptime_documented":0.0,"version_stability":40.0,"breaking_changes_history":20.0,"error_recovery":35.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["run_query is capable of executing arbitrary Cypher; destructive queries require explicitly setting unsafe: true","Default connection may be unauthenticated (bolt://localhost:7687) if you do not provide MEMGRAPH_USER/MEMGRAPH_PASSWORD, which can be unsafe in non-local environments","No documentation is provided here for rate limiting, timeouts, or retry/idempotency guidance—agents may need to implement their own safeguards"]}}