74
grade C
3 days ago
glama
sqlite-readonly-mcp
A read-only SQLite MCP server for remote Linux deployment that provides secure database querying via SELECT statements and table listing. It uses Bearer Token authentication and returns JSON results through Streamable HTTP, designed to run behind Nginx with HTTPS.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
// key findings
✅
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
🔐
You'll be asked for 2 credentials: BEARER_TOKEN, READONLY_TOKEN
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// required environment variables
This server reads these from
process.env. You'll be asked to provide them before it can run.config
ALLOWED_HOSTS— 否 逗号分隔,允许的 Host 头;需包含 Nginx 对外域名。默认 127.0.0.1,localhost,[::1]🔐 secret
BEARER_TOKEN— 是 静态 Bearer(也可用 READONLY_TOKEN)config
HOST— 否 默认 127.0.0.1config
PORT— 否 默认 3333🔐 secret
READONLY_TOKEN— BEARER_TOKEN 是 静态 Bearer(也可用 )config
SQLITE_MAX_ROWS— 否 单次查询最大行数,默认 5000config
SQLITE_PATH— 是 数据库文件绝对路径// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 5 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[](https://m8ven.ai/mcp/dochaocn-sqlite-readonly-mcp-1xe2wg)commit: 347778317ad8a88839cf9c90f6d35eb0bdffda25
code hash: 3fd749e2654bf692adc51772c7e753ee5ae5548ca83b38eb43d3e8a5dafcea7e
verified: 4/18/2026, 6:12:44 PM