mimer-mcp
by mimersql
Overview
A Model Context Protocol (MCP) server providing Mimer SQL database connectivity for AI applications to browse schemas, execute read-only queries, and manage stored procedures via natural language.
Installation
docker compose run --rm -i --no-TTY mimer-mcp-serverEnvironment Variables
- DB_DSN
- DB_USER
- DB_PASSWORD
- DB_HOST
- DB_PORT
- DB_PROTOCOL
- DB_POOL_INITIAL_CON
- DB_POOL_MAX_UNUSED
- DB_POOL_MAX_CON
- DB_POOL_BLOCK
- DB_POOL_DEEP_HEALTH_CHECK
- MCP_LOG_LEVEL
- DOTENV_PATH
- MCP_TRANSPORT
- MCP_HTTP_HOST
- MCP_HTTP_PORT
Security Notes
SQL Injection risk: Several tools, including `get_table_info` (via `SchemaInspector._get_sample_rows`) and `execute_stored_procedure`, directly interpolate user-provided schema, table, and procedure names into SQL queries using f-strings (e.g., `"{schema}"."{table_name}"`). If a malicious user supplies input containing double quotes or SQL injection syntax in these names, it could lead to arbitrary SQL execution (DDL injection, data exfiltration, or modification if the database user has sufficient privileges). Although `execute_query` explicitly restricts to SELECT statements and uses parameterized queries for values, the identifier interpolation remains a critical vulnerability.
Similar Servers
mcp-mysql-server
Provides an MCP-compliant interface for AI models to securely interact with a MySQL database for CRUD operations, schema inspection, and performance analysis.
DatabaseMcpServer
Provides a robust and secure database access layer for AI assistants, supporting 19 types of databases with single-instance multi-database dynamic switching and over 50 tools for data and schema management.
dx-mcp-server
Empowers AI applications to interact with and query a user-provided Postgres database via the Model Context Protocol (MCP).
lemonado-mcp-server
Enables AI agents to query and analyze data from various marketing, payment, and productivity platforms using SQL via the Model Context Protocol (MCP).