polarbase
Verified Safeby polarbase-team
Overview
Extensible open-source data backend for PostgreSQL with a multi-view UI (spreadsheet), AI agent integration via MCP, and real-time capabilities.
Installation
bun startEnvironment Variables
- SUPER_ADMIN_API_KEY
- GEMINI_API_KEY
- OPENAI_API_KEY
- POSTGRES_USER
- POSTGRES_HOST
- POSTGRES_DB
- POSTGRES_PASSWORD
- POSTGRES_PORT
Security Notes
The project uses API key-based authentication, rate-limiting, and comprehensive input validation (Elysia's t.Object, t.String patterns, t.Numeric min/max, t.Files limits) to mitigate common web vulnerabilities. Database interactions are primarily handled by Knex, which generally protects against SQL injection. File uploads are sanitized, and the super admin key is environment variable-driven, not hardcoded. Limited use of `pg.raw` is observed, but in contexts that appear to be for DDL or fixed expressions rather than user input, reducing direct injection risk.
Similar Servers
MCP-PostgreSQL-Ops
The MCP server provides professional operations, monitoring, and management capabilities for PostgreSQL databases using natural language queries.
tiger-docs-mcp-server
An MCP server and Claude plugin providing AI assistants with advanced PostgreSQL knowledge through semantic documentation search and curated best practice skills.
enhanced-postgres-mcp-server
This server acts as a Model Context Protocol interface for PostgreSQL, enabling LLMs to query data, modify records, and manage database schema objects with read and write capabilities.
postgres-mcp
A PostgreSQL database management and optimization expert system, offering interactive workflows for query analysis, index tuning, health monitoring, backup strategies, and advanced functionalities like vector search and geospatial data management. It helps users understand and improve their PostgreSQL database performance and health.