mcp-neo4j-graphrag
Verified Safeby guerinjeanmarc
Overview
Extends Neo4j with vector search, fulltext search, and search-augmented Cypher queries to build powerful GraphRAG applications.
Installation
mcp-neo4j-graphragEnvironment Variables
- NEO4J_URI
- NEO4J_USERNAME
- NEO4J_PASSWORD
- EMBEDDING_MODEL
- OPENAI_API_KEY
Security Notes
The server uses parameterized queries for values in most cases, mitigating standard injection risks. It explicitly checks for and prevents write Cypher queries. It includes robust output sanitization and token-aware truncation to prevent information overload or data leakage. However, the `return_properties` parameter in `vector_search` and `fulltext_search` is directly interpolated into the Cypher query, which is a minor theoretical risk if an LLM generates malicious property names, though property names are generally static schema elements. Additionally, `search_cypher_query` executes raw Cypher (read-only) provided by the LLM, relying on the LLM's adherence to safe patterns, which is a common but inherent risk in LLM agent design. Insecure default Neo4j credentials are a warning, requiring proper environment configuration for production use.
Similar Servers
mcp-neo4j
The MCP Neo4j Cypher server enables AI models to interact with a Neo4j graph database, execute Cypher queries (read and write), explore the graph schema, and manage query performance and response sizes.
mcp-omnisearch
Provides a unified interface for various search, AI response, content processing, and enhancement tools via Model Context Protocol (MCP).
mcp
Enables AI models (LLMs) to interact with a Neo4j graph database by providing a structured set of tools via the Model Context Protocol (MCP).
code-graph-context
A Model Context Protocol (MCP) server that builds and queries a knowledge graph of TypeScript codebases in Neo4j, supporting semantic search, impact analysis, dead code detection, and multi-agent coordination through stigmergy.