Skip to main content
Glama
spences10

mcp-turso-cloud

by spences10
OverviewSchemaRelated ServersScoreDiscussions
TypeScript
Remote

execute_query

Run SQL queries on Turso databases directly from LLMs using the MCP server. Input the query, optional database name, and parameters to retrieve or modify data efficiently.

Instructions

Executes a SQL query against a database

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
databaseNoDatabase name (optional, uses context if not provided)
paramsNoQuery parameters (optional)
queryYesSQL query to execute

Implementation Reference

  • src/clients/database.ts:120-151 (handler)
    Core implementation that executes the SQL query against the Turso database client, handling read-only detection, permission selection, parameter conversion, and error wrapping.
    export async function execute_query(
	database_name: string,
	query: string,
	params: Record<string, any> = {},
): Promise<ResultSet> {
	try {
		// Determine if this is a read-only query
		const is_read_only = query
			.trim()
			.toLowerCase()
			.startsWith('select');
		const permission = is_read_only ? 'read-only' : 'full-access';

		const client = await get_database_client(
			database_name,
			permission,
		);

		// Execute the query
		return await client.execute({
			sql: query,
			args: convert_parameters(params),
		});
	} catch (error) {
		throw new TursoApiError(
			`Failed to execute query for database ${database_name}: ${
				(error as Error).message
			}`,
			500,
		);
	}
}
  • src/tools/handler.ts:243-281 (registration)
    MCP tool registration for 'execute_query', including input schema reference, safety validation to prevent read-only misuse, database context resolution, delegation to core handler, result formatting, and error handling.
    server.tool(
	{
		name: 'execute_query',
		description: `⚠️ DESTRUCTIVE: Execute SQL that can modify/delete data (INSERT, UPDATE, DELETE, DROP, ALTER). Always confirm with user before destructive operations.`,
		schema: QuerySchema,
	},
	async ({ query, params = {}, database }) => {
		try {
			// Validate that this is not a read-only query
			const normalized_query = query.trim().toLowerCase();
			if (
				normalized_query.startsWith('select') ||
				normalized_query.startsWith('pragma')
			) {
				throw new Error(
					'SELECT and PRAGMA queries should use execute_read_only_query',
				);
			}

			const database_name = resolve_database_name(database);
			if (database) set_current_database(database);

			const result = await database_client.execute_query(
				database_name,
				query,
				params,
			);

			const formatted_result = format_query_result(result);
			return create_tool_response({
				database: database_name,
				query,
				result: formatted_result,
			});
		} catch (error) {
			return create_tool_error_response(error);
		}
	},
);
  • src/tools/handler.ts:36-40 (schema)
    Zod input schema validation for the execute_query tool parameters.
    const QuerySchema = z.object({
	query: z.string().describe('SQL query to execute'),
	params: z.record(z.string(), z.any()).optional().describe('Query parameters (optional) - Use parameterized queries for security'),
	database: z.string().optional().describe('Database name (optional, uses context if not provided)'),
});
  • src/clients/database.ts:12-36 (helper)
    Utility to convert input parameters to libsql client expected format (named object or positional array).
    function convert_parameters(params: Record<string, any>): any {
	if (!params || Object.keys(params).length === 0) {
		return {};
	}

	// Check if parameters are positional (numbered keys like "1", "2", etc.)
	const keys = Object.keys(params);
	const is_positional = keys.every((key) => /^\d+$/.test(key));

	if (is_positional) {
		// Convert to array for positional parameters
		const max_index = Math.max(...keys.map((k) => parseInt(k)));
		const param_array: any[] = new Array(max_index);

		for (const [key, value] of Object.entries(params)) {
			const index = parseInt(key) - 1; // Convert 1-based to 0-based indexing
			param_array[index] = value;
		}

		return param_array;
	}

	// Return as-is for named parameters
	return params;
}
  • src/tools/handler.ts:366-380 (helper)
    Formats the libsql ResultSet for JSON-safe tool response, converting BigInt to string.
    function format_query_result(result: ResultSet): any {
	// Convert BigInt to string to avoid serialization issues
	const lastInsertRowid =
		result.lastInsertRowid !== null &&
		typeof result.lastInsertRowid === 'bigint'
			? result.lastInsertRowid.toString()
			: result.lastInsertRowid;

	return {
		rows: result.rows,
		rowsAffected: result.rowsAffected,
		lastInsertRowid: lastInsertRowid,
		columns: result.columns,
	};
}

Tool Definition Quality

C2.9/5.0
Behavior2/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations provided, the description carries the full burden of behavioral disclosure. It mentions execution but doesn't clarify whether this is read-only or can modify data, what permissions are required, potential rate limits, or what happens on errors. For a tool that could perform destructive operations, this is a significant gap in transparency.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is a single, efficient sentence that directly states the tool's function without unnecessary words. It's appropriately sized and front-loaded, making it easy to understand at a glance.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness2/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the complexity of SQL execution (which can include read/write operations), lack of annotations, and no output schema, the description is insufficient. It doesn't address critical context like safety considerations, return format, or error handling, leaving significant gaps for an AI agent to use this tool effectively.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters3/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

The input schema has 100% description coverage, clearly documenting all three parameters. The description adds no additional parameter information beyond what's in the schema, so it meets the baseline of 3 where the schema does the heavy lifting without compensating for any gaps.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose4/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the action ('executes') and resource ('SQL query against a database'), making the purpose immediately understandable. However, it doesn't differentiate this tool from potential alternatives like 'describe_table' or 'vector_search' that might also interact with databases, so it doesn't reach the highest score.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines2/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description provides no guidance on when to use this tool versus alternatives like 'describe_table' or 'vector_search', nor does it mention prerequisites such as database connection requirements or permissions. It simply states what the tool does without contextual usage information.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Other Tools

Related Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/spences10/mcp-turso-cloud'

If you have feedback or need assistance with the MCP directory API, please join our Discord server