Which integrations are available for this server?

Provides read-only access to a PostgreSQL database, enabling tools for running SELECT queries, listing tables with row counts and sizes, describing table schemas, and listing user-defined schemas.

How do I use mcp-postgres?

1. Click on "Install Server". 2. Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state. 3. In the chat, type @ followed by the MCP server name and your instructions, e.g., "@mcp-postgres list all tables" That's it! The server will respond to your query, and you can continue using it as needed. Here is a step-by-step guide with screenshots.

mcp-postgres

by gbfeliped

Overview Schema Related Servers Score Discussions

TypeScript

Remote

mcp-postgres

Read-only PostgreSQL MCP server for Claude Desktop (and any MCP-compatible client).

Tools exposed

Tool	Description
`query`	Run a SELECT query
`list_tables`	List all user tables with row-count estimate and size
`describe_table`	Show columns, types, nullability, PK for a table
`list_schemas`	List user-defined schemas

Related MCP server: PostgreSQL MCP Server

Security protections

Attack	Example	Status
Direct writes	`DROP`, `DELETE`, `UPDATE`, `INSERT`, `COPY`	✅ Blocked
Multiple statements	`SELECT 1; DROP TABLE t`	✅ Blocked
System functions	`pg_read_file`, `pg_sleep`, `dblink`	✅ Blocked
DoS	`pg_sleep(10)`, `GENERATE_SERIES(1,99999999)`	✅ Blocked
Dollar-quoted bypass	`$$DROP TABLE t$$`	✅ Blocked
Whitespace bypass	tabs and newlines between keywords	✅ Blocked
Comment bypass	`/* */` and `--` before keywords	✅ Blocked
Session write mode	Enforced via `READ ONLY` transaction	✅ Enforced
Valid queries	`SELECT`, `SELECT ... LIMIT`, `COUNT`, `WHERE`	✅ Allowed

Environment variables

PostgreSQL connection

Variable	Required	Default	Description
`PG_HOST`	✅	—	Server hostname or IP
`PG_DATABASE`	✅	—	Database name
`PG_USER`	✅	—	PostgreSQL username
`PG_PASSWORD`	✅	—	PostgreSQL password
`PG_PORT`		`5432`	TCP port
`PG_SSL`		`false`	Enable SSL (`true`/`false`)
`PG_SSL_REJECT_UNAUTHORIZED`		`true`	Reject self-signed certs

SSH tunnel (optional)

Set PG_SSH_HOST to activate the tunnel. Authentication requires either a private key file or a password.

Variable	Required	Default	Description
`PG_SSH_HOST`	—	—	SSH server hostname (activates tunnel when set)
`PG_SSH_PORT`		`22`	SSH server port
`PG_SSH_USER`	✅ (if tunnel)	—	SSH username
`PG_SSH_PRIVATE_KEY`	✅ or password	—	Path to private key file (e.g. `~/.ssh/id_rsa`)
`PG_SSH_KEY_PASSPHRASE`		—	Passphrase for the private key (if encrypted)
`PG_SSH_PASSWORD`	✅ or key	—	SSH password (used when no key file is provided)
`PG_SSH_REMOTE_HOST`		`PG_HOST`	Postgres host as seen from the SSH server

Build

npm install
npm run build

Claude Desktop configuration

Add to %APPDATA%\Claude\claude_desktop_config.json:

Conexão direta:

{
  "mcpServers": {
    "postgres": {
      "command": "node",
      "args": ["C:/Projetos/mcp-postgres-readonly/dist/index.js"],
      "env": {
        "PG_HOST": "localhost",
        "PG_DATABASE": "mydb",
        "PG_USER": "postgres",
        "PG_PASSWORD": "yourpassword"
      }
    }
  }
}

Conexão direta com SSL (certificado auto-assinado):

{
  "mcpServers": {
    "postgres": {
      "command": "node",
      "args": ["C:/Projetos/mcp-postgres-readonly/dist/index.js"],
      "env": {
        "PG_HOST": "db.example.com",
        "PG_DATABASE": "mydb",
        "PG_USER": "postgres",
        "PG_PASSWORD": "yourpassword",
        "PG_SSL": "true",
        "PG_SSL_REJECT_UNAUTHORIZED": "false"
      }
    }
  }
}

Via SSH tunnel (private key):

{
  "mcpServers": {
    "postgres": {
      "command": "node",
      "args": ["C:/Projetos/mcp-postgres-readonly/dist/index.js"],
      "env": {
        "PG_HOST": "localhost",
        "PG_DATABASE": "mydb",
        "PG_USER": "postgres",
        "PG_PASSWORD": "yourpassword",
        "PG_SSH_HOST": "bastion.example.com",
        "PG_SSH_USER": "ubuntu",
        "PG_SSH_PRIVATE_KEY": "C:/Users/you/.ssh/id_rsa"
      }
    }
  }
}

Via SSH tunnel (password):

{
  "mcpServers": {
    "postgres": {
      "command": "node",
      "args": ["C:/Projetos/mcp-postgres-readonly/dist/index.js"],
      "env": {
        "PG_HOST": "localhost",
        "PG_DATABASE": "mydb",
        "PG_USER": "postgres",
        "PG_PASSWORD": "yourpassword",
        "PG_SSH_HOST": "bastion.example.com",
        "PG_SSH_USER": "ubuntu",
        "PG_SSH_PASSWORD": "sshpassword"
      }
    }
  }
}

Tip: When PG_SSH_REMOTE_HOST is omitted, the tunnel forwards to PG_HOST as seen from the SSH server. If Postgres runs on a private address only reachable from the bastion (e.g. db.internal), set PG_SSH_REMOTE_HOST=db.internal and PG_HOST to anything (it will be overridden).

This server cannot be installed

license - permissive license

quality - not tested

maintenance

How are these scores calculated?

Maintenance

–Maintainers

–Response time

–Release cycle

–Releases (12mo)

Commit activity

Resources

Need Help?

Related Servers

Unclaimed servers have limited discoverability.

Looking for Admin?

If you are the server author, to access and configure the admin panel.

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/gbfeliped/mcp-postgres-readonly'

If you have feedback or need assistance with the MCP directory API, please join our Discord server