gx-mcp-server
Supports Bearer token authentication using JWTs from Auth0.
Supports Bearer token authentication using JWTs from Okta.
Enables distributed tracing via OpenTelemetry exporter.
Exposes Prometheus metrics for monitoring the server.
Allows loading tables from Snowflake as datasets for validation.
Provides SQLite-based storage for datasets and validation results.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@gx-mcp-serverLoad CSV file 'data.csv' and verify column 'age' is not null"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
Great Expectations MCP Server
Expose Great Expectations data-quality checks as MCP tools for LLM agents.
Table of Contents
Related MCP server: Exasol MCP Server
Motivation
Large Language Model (LLM) agents often need to interact with and validate data. Great Expectations is a powerful open-source tool for data quality, but it's not natively accessible to LLM agents. This server bridges that gap by exposing core Great Expectations functionality through the Model Context Protocol (MCP), allowing agents to:
Programmatically load datasets from various sources.
Define data quality rules (Expectations) on the fly.
Run validation checks and interpret the results.
Integrate robust data quality checks into their automated workflows.
Quick Start
Docker (Recommended):
# Run in default stdio mode
docker run --rm -i davidf9999/gx-mcp-server:latest
# Run in http mode
docker run -d -p 8000:8000 --name gx-mcp-server -e MCP_MODE=http davidf9999/gx-mcp-server:latest
claude mcp add gx-mcp-server --transport http http://localhost:8000/mcp/
claude "Load CSV data id,age
1,25
2,19
3,45 and validate ages 21-65, show failed records"Local Development:
git clone https://github.com/davidf9999/gx-mcp-server && cd gx-mcp-server
just install
claude mcp add gx-mcp-server-local -- uv run python -m gx_mcp_serverInstallation & Usage
Features
Load CSV data from file, URL, or inline (up to 1 GB, configurable)
Load tables from Snowflake or BigQuery using URI prefixes
Define and modify ExpectationSuites (profiler flag is deprecated)
Validate data and fetch detailed results (sync or async)
Choose in-memory (default) or SQLite storage for datasets & results
Optional Basic or Bearer token authentication for HTTP clients
Configure HTTP rate limiting per minute
Restrict origins with
--allowed-originsPrometheus metrics on
--metrics-portOpenTelemetry tracing via
--trace(OTLP exporter)Multiple transport modes: STDIO, HTTP, Inspector (GUI)
Development Setup:
just install # Install dependencies
just serve # Run HTTP server
just run-examples # Try examples
just test # Run tests
just ci # Lint and type-checkServer Modes:
uv run python -m gx_mcp_server # STDIO (for AI clients)
uv run python -m gx_mcp_server --http # HTTP (for web clients)
uv run python -m gx_mcp_server --inspect # Inspector GUIWith Authentication:
uv run python -m gx_mcp_server --http --basic-auth user:pass
uv run python -m gx_mcp_server --http --rate-limit 30MCP Client Configuration
Configure any MCP-compatible client (Claude Desktop, Claude CLI, custom applications) to connect to the server.
Claude CLI Setup
Local Development (STDIO):
claude mcp add gx-mcp-server-local -- uv run python -m gx_mcp_serverClaude CLI with Docker (stdio)
claude mcp add gx-stdio \
-- docker run --rm -i \
-e MCP_MODE=stdio \
-e PYTHONUNBUFFERED=1 \
gx-mcp-servercline with Docker (stdio)
{
"mcpServers": {
"gx": {
"command": "docker",
"args": [
"run","--rm","-i",
"--network","none", // optional isolation
"-e","MCP_MODE=stdio", // your new switch
"-e","PYTHONUNBUFFERED=1", // avoid buffering
"davidf9999/gx-mcp-server:latest"
],
"alwaysAllow": ["*"],
"timeout": 60
}
}
}Docker without Authentication:
```bash
docker run -d -p 8000:8000 --name gx-mcp-server davidf9999/gx-mcp-server:latest
claude mcp add gx-mcp-server --transport http http://localhost:8000/mcp/Docker with Basic Authentication:
docker run -d -p 8000:8000 --name gx-mcp-server \
-e MCP_SERVER_USER=myuser -e MCP_SERVER_PASSWORD=mypass \
davidf9999/gx-mcp-server:latest
claude mcp add gx-mcp-server --transport http \
--header "Authorization: Basic $(echo -n 'myuser:mypass' | base64)" \
http://localhost:8000/mcp/Remote Server with JWT:
claude mcp add gx-mcp-server-remote --transport http \
--header "Authorization: Bearer YOUR_JWT_TOKEN" \
https://your-server.com:8000/mcp/Manual Configuration
For custom MCP clients, add to your config file:
STDIO Mode:
{
"mcpServers": {
"gx-mcp-server": {
"type": "stdio",
"command": "uv",
"args": ["run", "python", "-m", "gx_mcp_server"]
}
}
}HTTP Mode with Authentication:
{
"mcpServers": {
"gx-mcp-server": {
"type": "http",
"url": "https://your-server.com:8000/mcp/",
"headers": {
"Authorization": "Basic dXNlcjpwYXNz"
}
}
}
}Testing & Management
Test the Server:
claude "Load CSV data id,age\n1,25\n2,19\n3,45 and validate ages 21-65, show failed records"Manage Multiple Servers:
claude mcp add gx-local -- uv run python -m gx_mcp_server
claude mcp add gx-docker --transport http http://localhost:8000/mcp/
claude mcp list
claude mcp remove gx-localTroubleshooting
Connection Issues:
# Check server health (HTTP mode)
curl http://localhost:8000/mcp/health
# Check MCP server status
claude mcp list
# Test with verbose logging
claude mcp add gx-debug -- uv run python -m gx_mcp_server --log-level DEBUGCommon Issues:
"Failed to connect": Ensure server is running and port is accessible
"Authentication failed": Verify credentials and auth headers are correct
"401 Unauthorized": Check if server requires authentication but none provided
"403 Forbidden": Authentication succeeded but insufficient permissions
"File not found": For local files, ensure paths are correct relative to server working directory
"Permission denied": Check file permissions for mounted volumes in Docker
Authentication Debugging:
# Test server health (no auth required)
curl http://localhost:8000/mcp/health
# Test with basic auth
curl -H "Authorization: Basic $(echo -n 'user:pass' | base64)" \
http://localhost:8000/mcp/health
# Test with bearer token
curl -H "Authorization: Bearer YOUR_JWT_TOKEN" \
http://localhost:8000/mcp/healthAuthentication
By default, the server runs without any authentication enabled. For production or secure environments, you should enable one of the supported methods below.
The server supports two authentication methods for the HTTP and Inspector modes: Basic and Bearer.
Basic Authentication
Use a simple username and password to protect the server. You can provide credentials via command-line arguments or environment variables.
Command-line argument:
uv run python -m gx_mcp_server --http --basic-auth myuser:mypasswordEnvironment variables:
export MCP_SERVER_USER=myuser
export MCP_SERVER_PASSWORD=mypassword
uv run python -m gx_mcp_server --httpBearer Authentication
For more secure, token-based authentication, you can use bearer tokens (JWTs). This is the recommended approach for production environments.
How it Works: The gx-mcp-server acts as a resource server and validates JWTs. It does not issue them. Your AI agent (the client) must first obtain a JWT from a dedicated Identity Provider (like Auth0, Okta, or a custom auth service).
Configuration:
# Example using a public key file
uv run python -m gx_mcp_server --http \
--bearer-public-key-file /path/to/public_key.pem \
--bearer-issuer https://my-auth-provider.com/ \
--bearer-audience https://my-api.com
# Example using a JWKS URL
uv run python -m gx_mcp_server --http \
--bearer-jwks https://my-auth-provider.com/.well-known/jwks.json \
--bearer-issuer https://my-auth-provider.com/ \
--bearer-audience https://my-api.com--bearer-public-key-file: Path to the RSA public key for verifying the JWT signature.--bearer-jwks: URL of the JSON Web Key Set (JWKS) to fetch the public key.--bearer-issuer: The expected issuer (iss) claim in the JWT.--bearer-audience: The expected audience (aud) claim in the JWT.
Legacy Environment Variables (for custom clients): Some clients may expect these environment variables:
export MCP_SERVER_URL=http://localhost:8000/mcp/
export MCP_AUTH_TOKEN="myuser:mypassword" # For basic auth
export MCP_AUTH_TOKEN="YOUR_JWT_TOKEN" # For bearer authConfiguration
CSV File Size Limit
Default: 50 MB. Override via environment variable:
export MCP_CSV_SIZE_LIMIT_MB=200 # 1–1024 MB allowedWarehouse Connectors
Install extras:
uv pip install -e .[snowflake]
uv pip install -e .[bigquery]Use URI prefixes:
load_dataset("snowflake://user:pass@account/db/schema/table?warehouse=WH")
load_dataset("bigquery://project/dataset/table")load_dataset automatically detects these prefixes and delegates to the appropriate connector.
Metrics and Tracing
Prometheus metrics:
http://localhost:9090/metricsOpenTelemetry:
uv run python -m gx_mcp_server --http --trace
Docker
Using Pre-built Images (Recommended)
The easiest way to run gx-mcp-server is using the official Docker image. By default, the container runs in stdio mode. You can switch to http mode by setting the MCP_MODE environment variable to http.
# Run latest stable version in stdio mode
docker run --rm -i davidf9999/gx-mcp-server:latest
# Run latest stable version in http mode
docker run -d -p 8000:8000 --name gx-mcp-server -e MCP_MODE=http davidf9999/gx-mcp-server:latest
# Run with authentication
docker run -d -p 8000:8000 --name gx-mcp-server \
-e MCP_MODE=http \
-e MCP_SERVER_USER=myuser \
-e MCP_SERVER_PASSWORD=mypass \
davidf9999/gx-mcp-server:latest
# Run with file access (for loading local CSV files)
docker run -d -p 8000:8000 --name gx-mcp-server \
-e MCP_MODE=http \
-v "$(pwd)/data:/app/data" \
davidf9999/gx-mcp-server:latestBuilding Local Images
Build and run the server from source:
# Build the production image
just docker-build
# Run the server
just docker-runThe server will be available at http://localhost:8000.
For development, you can build a development image that includes test dependencies and run tests or examples:
# Build the development image
just docker-build-dev
# Run tests
just docker-test
# Run examples (requires OPENAI_API_KEY in .env file)
just docker-run-examplesDevelopment
just install
cp .env.example .env # optional: add your OpenAI API key
just run-examplesTelemetry
Great Expectations sends anonymous usage data by default. Disable:
export GX_ANALYTICS_ENABLED=falseCurrent Limitations
Stores last 100 datasets/results only
In-process asyncio concurrency (no external queue)
API may evolve as project stabilizes
Security
Run behind a reverse proxy (Nginx, Caddy, cloud LB) in production
Supply
--ssl-certfile/--ssl-keyfileonly if the proxy cannot terminate TLSAnonymous sessions use UUIDv4; persistent apps should use
secrets.token_urlsafe(32)
Project Roadmap
See ROADMAP-v2.md for upcoming sprints.
License & Contributing
MIT License – see CONTRIBUTING.md for how to help!
Author
David Front – dfront@gmail.com | GitHub: davidf9999
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/davidf9999/gx-mcp-server'
If you have feedback or need assistance with the MCP directory API, please join our Discord server