surreal-mcp
by lfnovo
Overview
Enables AI assistants to interact with SurrealDB databases using the Model Context Protocol.
Installation
uvx surreal-mcpEnvironment Variables
- SURREAL_URL
- SURREAL_USER
- SURREAL_PASSWORD
- SURREAL_NAMESPACE
- SURREAL_DATABASE
Security Notes
The server includes a 'query' tool that allows direct execution of arbitrary SurrealQL queries provided by the AI. While this is an intended feature to provide full database control, it represents a critical security risk if the AI model is untrusted, unconstrained, or compromised. An attacker could leverage this to perform arbitrary database operations including data deletion, modification, or exfiltration, especially if the SurrealDB user configured for the server has broad permissions (e.g., 'root' as in the examples). The `patch` tool also allows path-based updates, which, if not carefully controlled by the AI, could target sensitive fields. It is NOT safe to run this server in production or with untrusted AI input unless the SurrealDB user permissions are severely restricted to only necessary operations and/or AI input to the 'query' tool is rigorously validated and sanitized by an external layer.
Similar Servers
context-portal
Manages structured project context for AI assistants and developer tools, enabling Retrieval Augmented Generation (RAG) and prompt caching within IDEs.
typedb-mcp
Enables AI assistants to interact with TypeDB databases using natural language to execute TypeQL queries and manage database resources.
vcon-mcp
The vCon MCP Server stores, manages, and provides advanced search and AI/ML analysis capabilities for IETF vCon (Virtual Conversation) objects, supporting multi-tenancy and extensibility via plugins.
dx-mcp-server
Empowers AI applications to interact with and query a user-provided Postgres database via the Model Context Protocol (MCP).