🔍 Query Execution: Execute SELECT queries with parameterized inputs
📊 Database Introspection: List databases, tables, schemas, indexes, and constraints
🔧 Maintenance Operations: Rebuild indexes, update statistics
📈 Performance Monitoring: View active sessions, query execution plans
🛡️ Type-Safe: Full TypeScript support with proper typing
🔒 Secure: Support for encrypted connections and SQL Server authentication
⚡ Connection Pooling: Efficient connection management with configurable pool settings

Installation

npm install @nam088/mcp-sql-server

Configuration

Environment Variables

Configure your SQL Server connection using environment variables:

# Required
MSSQL_HOST=localhost
MSSQL_PORT=1433
MSSQL_USER=sa
MSSQL_PASSWORD=your_password
MSSQL_DATABASE=your_database

# Optional
MSSQL_MODE=READONLY          # Plugin mode: READONLY or FULL
MSSQL_POOL_MAX=10           # Maximum pool size
MSSQL_POOL_MIN=0            # Minimum pool size
MSSQL_IDLE_TIMEOUT=30000    # Idle timeout in milliseconds
MSSQL_CONNECTION_TIMEOUT=15000  # Connection timeout
MSSQL_REQUEST_TIMEOUT=15000     # Request timeout

Plugin Configuration

import { SqlServerPlugin } from '@nam088/mcp-sql-server';

const plugin = new SqlServerPlugin({
  server: 'localhost',
  port: 1433,
  user: 'sa',
  password: 'your_password',
  database: 'your_database',
  mode: 'READONLY', // or 'FULL'
  encrypt: true,
  trustServerCertificate: false,
  poolMax: 10,
  poolMin: 0,
  connectionTimeout: 15000,
  requestTimeout: 15000,
});

Usage

As Standalone MCP Server

Create mcp-config.json:

{
  "mcpServers": {
    "sql-server": {
      "command": "npx",
      "args": [
        "-y",
        "@nam088/mcp-sql-server"
      ],
      "env": {
        "MSSQL_HOST": "localhost",
        "MSSQL_PORT": "1433",
        "MSSQL_USER": "sa",
        "MSSQL_PASSWORD": "your_password",
        "MSSQL_DATABASE": "your_database",
        "MSSQL_MODE": "READONLY"
      }
    }
  }
}

As Plugin in Your MCP Server

import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
import { PluginRegistry } from '@nam088/mcp-core';
import { SqlServerPlugin } from '@nam088/mcp-sql-server';

const server = new McpServer(
  { name: 'my-server', version: '1.0.0' },
  { capabilities: { tools: {} } }
);

const registry = new PluginRegistry(server);
await registry.registerPlugin(SqlServerPlugin);

const transport = new StdioServerTransport();
await server.connect(transport);

Available Tools

Read-Only Tools (READONLY mode)

sqlserver_query: Execute SELECT queries
sqlserver_list_databases: List all databases
sqlserver_list_tables: List tables in a schema
sqlserver_describe_table: Get table structure details
sqlserver_list_schemas: List all schemas
sqlserver_list_indexes: List indexes for a table
sqlserver_list_constraints: List constraints for a table
sqlserver_database_info: Get database server information
sqlserver_explain_query: Get query execution plan
sqlserver_active_sessions: List active database sessions
sqlserver_table_stats: Get table statistics (size, rows, etc)

Write Tools (FULL mode only)

sqlserver_execute: Execute INSERT, UPDATE, DELETE, DDL queries
sqlserver_kill_session: Kill a database session
sqlserver_rebuild_index: Rebuild table indexes
sqlserver_update_statistics: Update table statistics

Plugin Modes

READONLY Mode (Default)

Only read operations are allowed. Safe for production use.

MSSQL_MODE=READONLY

FULL Mode

All operations including writes are allowed. Use with caution.

MSSQL_MODE=FULL

Examples

Query with Parameters

// Tool: sqlserver_query
{
  "query": "SELECT * FROM users WHERE id = @id AND status = @status",
  "params": {
    "id": 1,
    "status": "active"
  }
}

List Tables

// Tool: sqlserver_list_tables
{
  "schema": "dbo"
}

Get Table Structure

// Tool: sqlserver_describe_table
{
  "table": "users",
  "schema": "dbo"
}

Execute Write Operation (FULL mode)

// Tool: sqlserver_execute
{
  "query": "INSERT INTO users (name, email) VALUES (@name, @email)",
  "params": {
    "name": "John Doe",
    "email": "john@example.com"
  }
}

Security Best Practices

Use Encrypted Connections: Set encrypt: true in production
Limit Permissions: Use database users with minimal required permissions
Use READONLY Mode: For most use cases, READONLY mode is sufficient
Parameterized Queries: Always use named parameters to prevent SQL injection
Connection Pooling: Configure appropriate pool sizes for your workload
Certificate Validation: Set trustServerCertificate: false in production

Type Safety

This plugin is fully typed with TypeScript. All query results and configurations use proper types from the mssql library, ensuring type safety throughout your application.

import type { SqlServerPluginConfig, SqlServerQueryResult } from '@nam088/mcp-sql-server';

Requirements

Node.js >= 18
SQL Server 2012 or later (including Azure SQL Database)
Network access to SQL Server instance

License

MIT

Author

nam088

Support

For issues and questions, please visit the GitHub repository.

Keywords

FAQs

What is @nam088/mcp-sql-server?

Is @nam088/mcp-sql-server well maintained?

Package last updated on 08 Nov 2025

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

@nam088/mcp-sql-server