dbhub
Verified Safeby bytebase
Overview
A database gateway that exposes SQL data sources via a RESTful API and the Model Context Protocol (MCP), enabling structured interaction with multiple database types.
Installation
pnpm devEnvironment Variables
- DSN
- DB_TYPE
- DB_HOST
- DB_PORT
- DB_USER
- DB_PASSWORD
- DB_NAME
- TRANSPORT
- PORT
- ID
- SSH_HOST
- SSH_PORT
- SSH_USER
- SSH_PASSWORD
- SSH_KEY
- SSH_PASSPHRASE
- SSH_PROXY_JUMP
- NODE_ENV
Security Notes
The server employs several good security practices, including explicit redaction of sensitive credentials (passwords, SSH keys) from API responses and the use of parameterized queries in database connectors to mitigate SQL injection risks. It also includes SDK-level read-only mode enforcement for PostgreSQL and SQLite. CORS is configured to allow requests only from localhost origins. Potential areas for further tightening include a more explicit whitelist for CORS origins beyond simple localhost checks. The server relies on user-provided DSNs and SSH configurations, requiring careful handling of these inputs by the deployment environment.
Similar Servers
teradata-mcp-server
A comprehensive Model Context Protocol (MCP) server for Teradata, exposing a rich suite of database administration, data quality, security, SQL optimization, vector store, plotting, backup/restore, feature store, and LLM chat/RAG capabilities as MCP tools for client applications like AI agents.
mcp_ohmy_sql-project
A Model Context Protocol (MCP) server that connects AI assistants to various SQL databases, providing intelligent query optimization, schema introspection, and secure, token-efficient data interaction.
mysql-mcp-server
Acts as a read-only MySQL server proxy that exposes database introspection and query execution tools to AI clients via the Model Context Protocol (MCP) or a REST API.
mcp-sql-server
A secure Model Context Protocol (MCP) server for Microsoft SQL Server, providing safe, read-only database access with comprehensive protection layers, SQL script review, schema discovery, and execution plan analysis.