gossisMCP
by MCPRUNNER
Overview
Analyzes SQL Server Integration Services (SSIS) DTSX files to provide detailed insights into package structure, data flows, control flows, logging, performance, and security, with an extensible plugin system.
Installation
./ssis-analyzer.exeEnvironment Variables
- GOSSIS_HTTP_PORT
- GOSSIS_PKG_DIRECTORY
- GOSSIS_LOG_LEVEL
- GOSSIS_LOG_FORMAT
Security Notes
CRITICAL: The server's plugin system allows dynamic loading of compiled Go shared libraries (.so/.dll files) from arbitrary locations without built-in signature verification or sandboxing by default. This poses a significant supply chain risk, enabling arbitrary code execution if a malicious or unverified plugin is installed and loaded. While the `PluginSecurity` configuration includes options like `SignatureRequired` and `AllowNetworkAccess`, the source code (specifically `plugin_system.go`'s `LoadPlugin` method) does not enforce these security checks during the dynamic loading process. The `NEXT_STEPS.md` explicitly notes 'Marketplace Hardening: add signature validation' as a future enhancement, confirming the current lack of these critical controls.
Similar Servers
mcpbi
Provides a Model Context Protocol (MCP) server for local Power BI Tabular Models, enabling LLM clients to interact for debugging, analysis, and DAX query composition.
visual-tree-explorer
Efficient codebase exploration, providing file tree visualization, symbol extraction, and dependency analysis for a given directory.
database-ontology-mcp
Analyzes relational database schemas and automatically generates comprehensive ontologies in RDF/Turtle format with direct SQL mappings for Text-2-SQL convenience, offering secure query execution and interactive data visualization.
dlt-mcp
The dlt-mcp server allows LLMs to retrieve up-to-date information about dlt pipelines, datasets, and schemas, enhancing the development experience in AI-enabled IDEs.