superset-mcp
Verified Safeby Winding2020
Overview
This server provides a Model Context Protocol (MCP) interface for programmatic management and interaction with Apache Superset data assets, including datasets, metrics, calculated columns, charts, and dashboards, along with SQL query execution.
Installation
npx -y superset-mcpEnvironment Variables
- SUPERSET_BASE_URL
- SUPERSET_USERNAME
- SUPERSET_PASSWORD
- SUPERSET_ACCESS_TOKEN
- SUPERSET_AUTH_PROVIDER
Security Notes
The server correctly uses environment variables for Superset credentials, avoiding hardcoded secrets. It implements authentication with access tokens or username/password and includes CSRF token handling for protected requests, which is good practice. Direct SQL execution is a core feature for the `execute_sql` tool, which inherently carries a risk if the MCP server or the AI agent using it is exposed to untrusted input, as it could enable SQL injection against the Superset's configured databases. However, this is a feature of the tool, not a vulnerability in the server's implementation of the Superset API, assuming the MCP server is deployed in a trusted environment and the AI agent's prompts are carefully managed.
Similar Servers
PowerBI-Desktop-MCP
Enables AI assistants to programmatically interact with Power BI Desktop models for data exploration, analysis, and modification.
mcpcat-python-sdk
This SDK integrates with MCP (Multi-Agent Communication Protocol) servers to collect user behavior analytics and forward telemetry (logs, traces, errors) to an analytics platform or third-party observability tools.
influxdb-mcp-server
An MCP server to interact with an InfluxDB instance, providing access to resources, tools for data management, and prompt templates for common queries and data formats.
powerdrill-mcp
An MCP server for AI-driven data analysis by providing tools to interact with Powerdrill datasets using natural language questions and managing data sources, jobs, and sessions.