MSSQL MCP Python Server

This is a MCP (Model Context Protocol) server implementation in Python that safely exposes SQL Server database capabilities to LLM clients.

If you want a complete guide of how to use, click here!

Quick Start

1. Install Dependencies

hljs language-bash

cd mssql-mcp-python
pip install -r requirements.txt

# or:
uv sync

2. Configure Database

Create .env file:

hljs language-bash

# For local SQL Server (Linux/Docker)
export MSSQL_CONNECTION_STRING="Driver={ODBC Driver 17 for SQL Server};Server=localhost,1433;Database=master;UID=sa;PWD=YourPassword123"

# Or for Windows Auth
export MSSQL_CONNECTION_STRING="Driver={ODBC Driver 17 for SQL Server};Server=localhost;Database=master;Trusted_Connection=yes"

3. Run the Server

hljs language-bash

# With stdio transport (for MCP clients)
python -m mssql_mcp.cli

# With custom settings
MSSQL_QUERY_TIMEOUT=60 READ_ONLY=true python -m mssql_mcp.cli --log-level DEBUG

# Or with HTTP transport
python -m mssql_mcp.cli --transport http --bind 0.0.0.0:8080

# Build and run
docker build -t mssql-mcp:latest .
docker run -e MSSQL_CONNECTION_STRING="..." mssql-mcp:latest

4. Test with curl (HTTP mode)

hljs language-bash

# Health check
curl http://localhost:8080/health

# Readiness check
curl http://localhost:8080/ready

# Server info
curl http://localhost:8080/info

# Prometheus metrics
curl http://localhost:8080/metrics

Available MCP Tools

The server exposes these tools to MCP clients:

1. `execute_sql(sql, format="table")`

Execute SELECT queries (or write operations if enabled)

hljs language-vbnet

Input: "SELECT * FROM users LIMIT 10"
Output: ASCII table or JSON

2. `list_schemas()`

List all database schemas

hljs language-makefile

Input: (none)
Output: Schema names list

3. `list_tables(schema, limit=200)`

List tables with optional schema filter

hljs language-vbnet

Input: schema="dbo", limit=100
Output: Table list with metadata

4. `schema_discovery(schema)`

Get full schema metadata (tables, columns, types)

hljs language-vbnet

Input: schema="dbo"
Output: JSON with detailed column info

5. `get_database_info()`

Get server/database metadata

hljs language-makefile

Input: (none)
Output: Database name, version, machine name

6. `get_policy_info()`

Get current security policy settings

hljs language-makefile

Input: (none)
Output: Policy details (allowed operations, limits)

7. `check_db_connection()`

Health check for database connectivity

hljs language-makefile

Input: (none)
Output: Connection status

Security Features

✅ Read-Only by Default

Only SELECT queries allowed unless explicitly enabled
Writes require ENABLE_WRITES=true + ADMIN_CONFIRM token

✅ SQL Injection Prevention

Parameterized queries via pyodbc
Multi-statement query blocking
Banned keyword detection (DROP, ALTER, EXEC, etc.)

✅ Sensitive Data Protection

Automatic log redaction (passwords, connection strings)
Query hashing for safe logging
No credentials in response bodies

✅ Resource Limits

Query timeouts (default 30s)
Row limits (default 50,000 rows)
Query length limits (50KB)
Connection pool limits

✅ Audit Trail

Structured logging with request metadata
Query metrics and statistics
Client ID tracking (when provided)

Observability

Prometheus Metrics

Available at GET /metrics (HTTP mode):

mssql_queries_executed_total — Total queries by tool and status
mssql_queries_blocked_total — Blocked queries by reason
mssql_query_duration_seconds — Query latency histogram
mssql_query_rows_returned — Result set size histogram
mssql_active_queries — Currently executing queries
mssql_server_ready — Server readiness (0/1)

Structured Logs

All logs in JSON format (when LOG_FORMAT=json):

hljs language-json

{
  "timestamp": "2024-01-15T10:30:00.123456",
  "level": "INFO",
  "logger": "mssql_mcp.tools",
  "message": "Query allowed",
  "module": "tools",
  "function": "execute_sql",
  "line": 42
}

Health Checks

GET /health — Liveness probe (always 200)
GET /ready — Readiness probe (200 if DB connected)

Common Tasks

Change Log Level

hljs language-bash

LOG_LEVEL=DEBUG python -m mssql_mcp.cli

Enable Write Operations

hljs language-bash

ENABLE_WRITES=true ADMIN_CONFIRM=secret python -m mssql_mcp.cli

Increase Query Timeout

hljs language-bash

MSSQL_QUERY_TIMEOUT=120 python -m mssql_mcp.cli

Run Multiple Instances

hljs language-bash

python -m mssql_mcp.cli --transport http --bind 127.0.0.1:8080
python -m mssql_mcp.cli --transport http --bind 127.0.0.1:8081  # Different port

mssql-mcp-python

MSSQL MCP Python Server

Quick Start

1. Install Dependencies

2. Configure Database

3. Run the Server

4. Test with curl (HTTP mode)

Available MCP Tools

1. `execute_sql(sql, format="table")`

2. `list_schemas()`

3. `list_tables(schema, limit=200)`

4. `schema_discovery(schema)`

5. `get_database_info()`

6. `get_policy_info()`

7. `check_db_connection()`

Security Features

Observability

Prometheus Metrics

Structured Logs

Health Checks

Common Tasks

Change Log Level

Enable Write Operations

Increase Query Timeout

Run Multiple Instances

Similar Packages

Original Author

Publisher

mssql-mcp-python

MSSQL MCP Python Server

Quick Start

1. Install Dependencies

2. Configure Database

3. Run the Server

4. Test with curl (HTTP mode)

Available MCP Tools

1. execute_sql(sql, format="table")

2. list_schemas()

3. list_tables(schema, limit=200)

4. schema_discovery(schema)

5. get_database_info()

6. get_policy_info()

7. check_db_connection()

Security Features

Observability

Prometheus Metrics

Structured Logs

Health Checks

Common Tasks

Change Log Level

Enable Write Operations

Increase Query Timeout

Run Multiple Instances

Similar Packages

Original Author

Publisher

1. `execute_sql(sql, format="table")`

2. `list_schemas()`

3. `list_tables(schema, limit=200)`

4. `schema_discovery(schema)`

5. `get_database_info()`

6. `get_policy_info()`

7. `check_db_connection()`