sql-steward
Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| SQL_STEWARD_MASK | No | Optional: set to '1' to enable PII masking on results. | |
| SQL_STEWARD_ROLE | No | Optional: role name for query-warden access control. | |
| SQL_STEWARD_LAYER | Yes | Path to the semantic layer YAML file defining entities, metrics, and policies. | |
| SQL_STEWARD_DB_URL | Yes | SQLAlchemy database URL (e.g., postgresql+psycopg://user@host/db). | |
| SQL_STEWARD_POLICY | No | Optional: path to a second-pass role policy YAML file. | |
| SQL_STEWARD_AUDIT_DB | No | Optional: path to SQLite database for agent-blackbox audit chain. | |
| SQL_STEWARD_EMBED_URL | No | Optional: URL for local embedding endpoint (e.g., http://localhost:11434/api/embeddings). | |
| SQL_STEWARD_EMBED_MODEL | No | Optional: model name for embeddings (e.g., nomic-embed-text). | |
| SQL_STEWARD_QUERY_BUDGET | No | Optional: hard cap on queries per role per session (integer). |
Capabilities
Features and capabilities supported by this server
| Capability | Details |
|---|---|
| tools | {
"listChanged": true
} |
| logging | {} |
| prompts | {
"listChanged": false
} |
| resources | {
"subscribe": false,
"listChanged": false
} |
| extensions | {
"io.modelcontextprotocol/ui": {}
} |
| experimental | {} |
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
| list_entitiesA | List the entities (tables) you may read, plus the available metrics. Call this first. You never write SQL -- you pass names from here to get_records / get_metric and sql-steward compiles the query for you. |
| describe_entityA | Show one entity's fields, types and PII tags. Fields tagged with a blocked PII category are marked |
| list_metricsB | List pre-approved metrics and the dimensions/filters each one allows. |
| get_recordsB | Read rows from one entity.
|
| get_metricA | Compute a pre-approved metric, optionally grouped/filtered by allowed dimensions. The aggregation itself is fixed by the semantic layer. |
| semantic_searchA | Vector similarity search over an entity's embedding column (pgvector).
|
| list_checksA | List the declared data-quality checks the layer can run. |
| run_checksA | Run the declared data-quality checks and return a readiness summary. Each check compiles to a read-only violation count; zero violations passes. Returns a readiness score (percent of checks passing), an overall status, and a per-check breakdown. An 'error'-severity failure makes the status 'failing'; a 'warn'-severity failure makes it 'degraded'. |
| audit_verifyA | Verify the tamper-evident audit chain (agent-blackbox), if enabled. Reports whether any previously recorded call was altered after the fact. |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
No resources | |
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/Pawansingh3889/sql-steward'
If you have feedback or need assistance with the MCP directory API, please join our Discord server