genai-toolbox
Verified Safeby googleapis
Overview
MCP Toolbox for Databases is an open-source server enabling AI agents to interact with various databases through defined tools, simplifying development, improving performance, and enhancing security for Gen AI applications.
Installation
./toolbox --tools-file "tools.yaml"Environment Variables
- POSTGRES_HOST
- POSTGRES_PORT
- POSTGRES_DATABASE
- POSTGRES_USER
- POSTGRES_PASSWORD
- BIGQUERY_PROJECT
- LOOKER_BASE_URL
- LOOKER_CLIENT_ID
- LOOKER_CLIENT_SECRET
Security Notes
The server design generally promotes parameterized queries for security. However, several tools, particularly those utilizing 'templateParameters' or 'execute-sql' variants, explicitly allow direct modification of SQL/CQL/Cypher statements, including identifiers, table names, or raw query text. This significantly increases the risk of SQL/CQL/Cypher injection if not used with extreme caution, proper input validation (e.g., 'allowedValues' for template parameters), and human-in-the-loop oversight. Admin-level tools for Cloud SQL and AlloyDB also require careful IAM permission management. The HTTP tool allows arbitrary requests, posing a risk if the LLM is not constrained. It is critical to configure tools and grant IAM roles with the principle of least privilege.
Similar Servers
db-mcp-server
Provides AI assistants with structured access to multiple databases, enabling them to execute SQL queries, manage transactions, explore schemas, and analyze performance through a unified interface.
tmcp
Build Model Context Protocol (MCP) servers for AI agents, providing schema-agnostic tools, resources, and prompts, with optional OAuth 2.1 authentication and distributed session management.
mcp-mysql-server
Provides an MCP-compliant interface for AI models to securely interact with a MySQL database for CRUD operations, schema inspection, and performance analysis.
DatabaseMcpServer
This server provides a unified, secure database operation interface for AI assistants, supporting a wide range of database types and dynamic switching.