ibmi-mcp-server

The server design explicitly exposes powerful IBM i SQL tools, including some that can execute arbitrary SQL (with keyword filtering) and CL commands that modify system settings (e.g., `qsys2.qcmdexc` in `execute_impersonation_lockdown`). While this is inherent to its purpose, it's managed by robust security mechanisms: explicit `readOnly` and `destructiveHint` flags, comprehensive `sqlSecurityValidator` with AST-based parsing to prevent SQL injection and filter forbidden keywords, and a client-side `FilteredMCPTools` to restrict agent access. Configuration requires environment variables for DB2i credentials and HTTP authentication relies on securely managed private/public keys, avoiding hardcoded secrets. The `sanitizeForLogging` utility further improves security posture by masking sensitive data in logs. Overall, while exposing powerful commands, the project demonstrates a strong commitment to security through design and implementation.