72
/ 100
11 days ago
glama

SQL Query Tools MCP Server

MCP server for connecting to SQL Server in readonly mode. Allows any MCP client to explore the schema and run SELECT queries against a SQL Server database.

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings
⚠️
Known vulnerabilities in dependencies: 2 high
Affects packages this MCP installs at runtime. Upgrade or remove the affected dependency.
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
🔐
You'll be asked for 1 credential: SQL_PASSWORD
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// known CVEs in dependencies2 high

Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.

high@modelcontextprotocol/sdk@0.6.0GHSA-8r9q-7v3j-jr4g

Anthropic's MCP TypeScript SDK has a ReDoS vulnerability

high@modelcontextprotocol/sdk@0.6.0GHSA-w48q-cv73-mx4w

Model Context Protocol (MCP) TypeScript SDK does not enable DNS rebinding protection by default

Depend on this server? Get alerted when its CVEs change.Watch this server free →
// required environment variables
This server reads these from process.env. You'll be asked to provide them before it can run.
configALLOWED_TABLESleave empty to expose all tables (supports wildcards: dbo.prefix_)
configAUDIT_LOGfalse # set to true to enable audit logging
configAUDIT_LOG_DIR./logs # folder where daily log files are written
configMAX_ROWS200 # maximum rows returned per query
configSCHEMA_CACHE_TTL_MINUTES5 # how long to cache schema results in memory (default: 5 min)
configSQL_DATABASEMyDatabase
configSQL_ENCRYPTfalse # set to true for Azure SQL or cloud servers
configSQL_INSTANCEleave empty if not using a named instance
🔐 secretSQL_PASSWORDmy_password
configSQL_QUERY_TIMEOUT30000 # query timeout in milliseconds (default: 30s)
configSQL_SERVERCheck that , SQL_USER and SQL_PASSWORD in .env are correct.
configSQL_TRUST_SERVER_CERTIf SQL_ENCRYPT is true (cloud servers), make sure to also set =true.
configSQL_USERCheck that SQL_SERVER, and SQL_PASSWORD in .env are correct.
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 6 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/negrip-mcp-sqlserver-readonly-b8aynn)](https://m8ven.ai/mcp/negrip-mcp-sqlserver-readonly-b8aynn)
commit: 85ce6cdc54f9af0ef88d84cb9b6923587fc8f741
code hash: 17ff95f2af7ed92514da8cbc52c9e43c2e35ac99866004304e7f80c4068f5d78
verified: 6/24/2026, 10:12:19 AM
view raw JSON →