Enables deployment of the MCP server using Docker containers, with configuration via environment variables and docker-compose for simplified setup and management.
Supports configuration through environment variables loaded from .env files, allowing customization of connection settings, security parameters, timeouts, and caching behavior.
Provides access to the repository for cloning and installation, with documentation and setup instructions accessible through GitHub.
Integrates structured logging through the pino logger, with configurable log levels for detailed application monitoring and troubleshooting.
Supports development using TypeScript, with type-safety and compilation features for robust server implementation and monitoring of code changes during development.
Provides an XML-based interface for submitting queries, executing stored procedures, and exploring database schemas when interacting with the MCP server.
This is a Model Context Protocol (MCP) server for SQL Server interactions. It allows Large Language Models (LLMs) to execute SQL queries, run stored procedures, and explore database schemas with enhanced security and robustness.
Secure SQL Query Execution: Run SELECT queries against SQL Server databases. All queries are parsed and validated to ensure only SELECT statements are executed.
Stored Procedure Support: Execute stored procedures with parameterized inputs.
Schema Exploration: View database table and column definitions, with results cached for performance.
Robust Connection Management: Utilizes a global connection pool for efficient reuse of database connections, with configurable retry logic and timeouts.
Enhanced Security:
SQL query parsing and SELECT-only whitelist.
SQL_ALLOWED_DATABASES environment variable to whitelist accessible databases.
Protection against common SQL injection patterns for database context switching.
Blocks execution of potentially harmful system procedures or commands in direct queries.
Configurable Caching: Database schema information is cached with a configurable Time-To-Live (TTL).
Structured Logging: Integrated pino logger for detailed and structured application logs.
Docker Ready: Simple deployment with Docker.
For complete Docker setup instructions, see the Docker README.
The server is configured using environment variables. Create a .env file in the root directory (you can copy .env.example) to set these values.
For a detailed guide on all configuration options and how to set them up, please see CONFIG.
Category | Variable | Description | Default (from config.js) |
Connection |
| SQL Server hostname or IP |
|
| SQL Server port |
| |
| SQL Server username |
| |
| SQL Server password | Required | |
| Default database name to connect to |
| |
Security |
| Enable encryption (set to
to disable) |
|
| Trust server certificate (set to
to disable) |
| |
| Comma-separated list of databases the server is allowed to access. If empty, access is less restricted (relies on DB user permissions). |
(empty list) | |
Timeouts & Retries |
| Connection timeout (ms) |
|
| Request timeout for queries (ms) |
| |
| Max number of retries for initial connection attempts |
| |
| Initial delay (ms) before retrying a failed connection |
| |
| Maximum delay (ms) for connection retries (uses exponential backoff) |
| |
Connection Pool |
| Max connections in pool |
|
| Min connections in pool |
| |
| Idle timeout for connections in pool (ms) |
| |
Caching |
| Time-To-Live for schema cache (ms) |
(5 minutes) |
MCP Server |
| Name of the MCP server |
|
| Version of the MCP server |
| |
Logging |
| Log level for pino logger (e.g.,
,
,
,
,
,
,
). This is read directly from
in
, not part of
. |
|
To add this MCP server to Claude CLI:
In the Claude conversation, you can:
Execute SELECT queries:
(The database attribute is optional if operating on the default SQL_DATABASE or if SQL_ALLOWED_DATABASES implies a single choice.)
Execute stored procedures:
Explore database schema:
(If YourDatabaseName is omitted, it defaults to the SQL_DATABASE specified in the environment variables.)
This MCP server utilizes a global, robust connection pool (mssql library's built-in pooling) managed by the DatabaseService.
Efficiency: Connections are reused, reducing the overhead of establishing a new connection for each request.
Resilience: Implements retry logic with exponential backoff for initial connection establishment.
No Session State Across Calls: Unlike a session-per-user model, this server does not guarantee that subsequent MCP calls (e.g., two separate execute_query calls) from the LLM will use the exact same underlying database connection. Therefore, session-specific state like temporary tables or session variables created in one call may not be available in another. Each call should be considered atomic from a session state perspective. The USE [database] command is issued within each operation if the target database differs from the pool's default, ensuring context for that specific operation.
SELECT: The server strictly enforces that only SELECT queries can be run via the execute_query tool, using SQL parsing. DML (INSERT, UPDATE, DELETE) and DDL statements are blocked.
Stored Procedure Execution: While stored procedures can perform any action their permissions allow, their execution is managed separately.
Database Whitelisting: Use the SQL_ALLOWED_DATABASES environment variable to restrict which databases the server can interact with. For a detailed explanation of this feature and how it interacts with SQL_DATABASE, please see DATABASE_WHITELISTING.md.
System Procedure Blocking: Direct execution of common system procedures (e.g., sp_, xp_) and commands like RECONFIGURE or WAITFOR DELAY via execute_query is blocked. Stored procedures should be used for legitimate system interactions.
Input Validation: Database names for context switching and stored procedure names undergo format validation. SQL parsing provides an additional layer of validation for queries.
Parameterized Inputs: Stored procedure parameters are handled by the mssql library, which typically parameterizes them to prevent SQL injection.
If you encounter issues:
Check container logs: docker logs mssql-mcp (if using Docker).
Check the server's console output for pino logs if running locally.
Verify all required environment variables in your .env file are correctly set, especially SQL_PASSWORD, SQL_SERVER, SQL_USER, and SQL_DATABASE.
Ensure the database(s) you are trying to access are listed in SQL_ALLOWED_DATABASES if you have set this variable.
Confirm network connectivity to your SQL Server instance from where the MCP server is running.
The test scripts (test-mcp.sh, test-session-persistence.sh) might need review/updates.
For detailed Docker troubleshooting, see the Docker README.
This server cannot be installed
hybrid server
The server is able to function both locally and remotely, depending on the configuration or use case.
A Model Context Protocol server that allows Large Language Models like Claude to execute SQL queries, explore database schemas, and maintain persistent connections to SQL Server databases.
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/JubinSaniei/mcp-mssql'
If you have feedback or need assistance with the MCP directory API, please join our Discord server