Back to Home
kuyaxx icon

Salesforce-MCP-ServerUI

by kuyaxx

View Source

Overview

Provides a Salesforce Model Context Protocol (MCP) server with enhanced UI capabilities for interacting with Salesforce data through queries, DML, and metadata operations.

Installation

Run Command
node dist/index.js

Environment Variables

  • SALESFORCE_CONNECTION_TYPE
  • SALESFORCE_INSTANCE_URL
  • SALESFORCE_USERNAME
  • SALESFORCE_PASSWORD
  • SALESFORCE_TOKEN
  • SALESFORCE_CLIENT_ID
  • SALESFORCE_CLIENT_SECRET

Security Notes

The server's implementation of `salesforce_query_records` and `salesforce_aggregate_query` tools directly concatenates user-provided string arguments (`whereClause`, `orderBy`, `havingClause`) into SOQL queries without explicit sanitization by the server itself. This creates a significant SOQL injection vulnerability, contradicting the claim in `SECURITY.md` that all SOQL inputs are sanitized. A malicious or poorly designed AI agent could exploit this to perform unauthorized data access or manipulation. While `execAsync` is used for Salesforce CLI authentication, the command itself is hardcoded, limiting the immediate risk from arbitrary command execution, but its presence signals a need for caution. Hardcoded secrets are avoided by requiring environment variables for authentication.

Similar Servers

mcp

268

This repository provides a collection of Model Context Protocol (MCP) servers to enable AI agents to interact with and manage various Oracle Cloud Infrastructure (OCI) services, Oracle Database, and MySQL databases through natural language.

Other
3
$Medium

mcp

250

The MCP Server for Salesforce facilitates seamless interaction between large language models (LLMs) and Salesforce orgs, providing a robust set of tools for common development and administrative tasks. This includes static code analysis for performance/security antipatterns, metadata deployment/retrieval, org management, SOQL queries, Apex/Agent testing, and DevOps workflows like work item management and conflict resolution.

Other
9
$High

leanmcp-sdk

10

Building production-ready Model Context Protocol (MCP) servers with TypeScript, supporting features like authentication, elicitation, and UI integration for AI agents.

Other
9
$Medium

mcp-servers

2

Provides current weather conditions and forecasts from the Open-Meteo API for a given geographical location.

Other
9
$Medium

Stats

Interest Score0
Security Score3
Cost ClassHigh
Avg Tokens1500
Stars0
Forks0
Last Update2026-01-19

Tags

SalesforceMCPUIData VisualizationCRM