PostgreSQL Secure
Security-hardened read-only PostgreSQL MCP server with AST-based SQL guard using pglast, per-transaction safety envel...
What it does
Security-hardened read-only PostgreSQL MCP server with AST-based SQL guard using pglast, per-transaction safety envelope, and JSON-Lines audit logging.
Provides agents with read-only PostgreSQL access through schema introspection, query execution with row caps and timeouts, EXPLAIN analysis, pg_stat_statements summaries, and pgvector similarity search. Implements a layered security model: least-privilege database role as the primary guard, pglast AST parsing to reject dangerous SQL patterns, per-transaction read-only envelopes, and structured audit logging. Includes 30 adversarial payload tests validating read-only enforcement. Supports PostgreSQL 13–17 and requires Python 3.11+.
Capabilities
Server
Quality
deterministic score 0.56 from registry signals: · indexed on pulsemcp · has source repo · 7 github stars · registry-generated description present