mcp-server-neon
by neondatabase
Overview
The Neon MCP Server allows users to interact with and manage their Neon Postgres databases using natural language commands, acting as a bridge between AI agents/LLMs and the Neon API and database operations.
Installation
npx -y @neondatabase/mcp-server-neon start <YOUR_NEON_API_KEY>Environment Variables
- ANTHROPIC_API_KEY
- NEON_API_KEY
- CLIENT_ID
- CLIENT_SECRET
- COOKIE_SECRET
- OAUTH_DATABASE_URL
- KV_URL
- UPSTREAM_OAUTH_HOST
Security Notes
The server's `run_sql` and `run_sql_transaction` tools execute arbitrary SQL provided by the LLM. While the `neon-serverless` driver's `readOnly: true` option offers some protection when the server is configured in read-only mode (via `x-read-only` header or OAuth scope), the core risk of an LLM generating potentially destructive or data-exfiltrating SQL remains. The project explicitly warns: 'Always review and authorize actions requested by the LLM before execution.' and 'We do not recommend using the Neon MCP Server in production environments.' It relies heavily on user vigilance and external database role configurations for true security. OAuth implementation uses standard libraries and persistent storage, and sensitive credentials (API keys, OAuth secrets) are managed via environment variables. Sentry logging is configured to send default PII, which is a privacy consideration.
Similar Servers
mcp
Enables AI models (LLMs) to interact with a Neo4j graph database by providing a structured set of tools via the Model Context Protocol (MCP).
MCP-PostgreSQL-Ops
The MCP server provides professional operations, monitoring, and management capabilities for PostgreSQL databases using natural language queries.
DBchat
Transforms a database into an intelligent conversational partner, enabling natural language queries, instant answers, and data visualizations via MCP clients.
enhanced-postgres-mcp-server
This server acts as a Model Context Protocol interface for PostgreSQL, enabling LLMs to query data, modify records, and manage database schema objects with read and write capabilities.