FastMCP MySQL Server

FastMCP MySQL Server

A secure and efficient MCP server for MySQL database operations, enabling LLMs to execute SQL queries with read-only access by default and optional write permissions.

Category
Visit Server

README

FastMCP MySQL Server

A FastMCP server implementation for MySQL database operations, providing secure and efficient access to MySQL databases for LLM applications.

Features

  • šŸ”’ Secure by Default: Read-only access with optional write permissions
  • āš” High Performance: Connection pooling and async operations
  • šŸ›”ļø SQL Injection Protection: Built-in query validation and prepared statements
  • šŸ“Š Comprehensive Monitoring: Structured JSON logging
  • šŸ”§ Flexible Configuration: Environment variable based configuration
  • šŸš€ Easy Deployment: Install and run with uvx

Installation

Using uvx (Recommended)

# Run directly with uvx
uvx fastmcp-mysql

# With environment variables
MYSQL_HOST=localhost MYSQL_USER=myuser MYSQL_PASSWORD=mypass MYSQL_DB=mydb uvx fastmcp-mysql

Using pip

pip install fastmcp-mysql

From source

git clone https://github.com/jinto/fastmcp-mysql
cd fastmcp-mysql
uv sync --all-extras

Configuration

Configure the server using environment variables:

Required Variables

Variable Description Default
MYSQL_USER Database username -
MYSQL_PASSWORD Database password -

Optional Variables

Variable Description Default
MYSQL_HOST Database host "127.0.0.1"
MYSQL_PORT Database port "3306"
MYSQL_DB Database name (optional) None
MYSQL_ALLOW_INSERT Enable INSERT queries false
MYSQL_ALLOW_UPDATE Enable UPDATE queries false
MYSQL_ALLOW_DELETE Enable DELETE queries false
MYSQL_POOL_SIZE Connection pool size 10
MYSQL_QUERY_TIMEOUT Query timeout (ms) 30000
MYSQL_LOG_LEVEL Log level (DEBUG, INFO, WARNING, ERROR) INFO
MYSQL_CACHE_ENABLED Enable query result caching true
MYSQL_CACHE_MAX_SIZE Maximum cache entries 1000
MYSQL_CACHE_TTL Cache TTL (ms) 60000
MYSQL_CACHE_EVICTION_POLICY Cache eviction policy (lru/ttl/fifo) lru
MYSQL_CACHE_CLEANUP_INTERVAL Cache cleanup interval (seconds) 60.0
MYSQL_CACHE_INVALIDATION_MODE Cache invalidation strategy aggressive
MYSQL_STREAMING_CHUNK_SIZE Streaming query chunk size 1000
MYSQL_PAGINATION_DEFAULT_SIZE Default page size 10
MYSQL_PAGINATION_MAX_SIZE Maximum page size 1000

Usage

Claude Desktop Configuration

Using Claude MCP CLI (Recommended)

# Install from PyPI (when published)
claude mcp add fastmcp-mysql \
  -e MYSQL_HOST="127.0.0.1" \
  -e MYSQL_PORT="3306" \
  -e MYSQL_USER="your_username" \
  -e MYSQL_PASSWORD="your_password" \
  -e MYSQL_DB="your_database" \
  -- uvx fastmcp-mysql

# Without specifying a database (use USE command)
claude mcp add fastmcp-mysql \
  -e MYSQL_HOST="127.0.0.1" \
  -e MYSQL_USER="your_username" \
  -e MYSQL_PASSWORD="your_password" \
  -- uvx fastmcp-mysql

# For local development
claude mcp add fastmcp-mysql \
  -e MYSQL_HOST="127.0.0.1" \
  -e MYSQL_PORT="3306" \
  -e MYSQL_USER="your_username" \
  -e MYSQL_PASSWORD="your_password" \
  -e MYSQL_DB="your_database" \
  -- uv run --project /path/to/fastmcp-mysql fastmcp-mysql

Manual Configuration

Add to your Claude Desktop configuration file:

{
  "mcpServers": {
    "mysql": {
      "command": "uvx",
      "args": ["fastmcp-mysql"],
      "env": {
        "MYSQL_HOST": "localhost",
        "MYSQL_PORT": "3306",
        "MYSQL_USER": "your_username",
        "MYSQL_PASSWORD": "your_password",
        "MYSQL_DB": "your_database",
        "MYSQL_ENABLE_SECURITY": "true",
        "MYSQL_RATE_LIMIT_RPM": "60",
        "MYSQL_RATE_LIMIT_BURST": "10"
      }
    }
  }
}

Available Tools

mysql_query

Execute SQL queries against the configured MySQL database.

Parameters:

  • query (string, required): The SQL query to execute
  • params (array, optional): Query parameters for prepared statements
  • database (string, optional): Target database (for multi-db mode)

Example:

# Simple query
result = await mysql_query("SELECT * FROM users WHERE active = 1")

# With parameters (SQL injection safe)
result = await mysql_query(
    "SELECT * FROM users WHERE age > %s AND city = %s",
    params=[18, "New York"]
)

# When no database is specified initially
result = await mysql_query("USE mydb")
result = await mysql_query("SHOW TABLES")
result = await mysql_query("SHOW DATABASES")

Security

Default Security Features

FastMCP MySQL includes comprehensive security features:

  • Read-only by default: Write operations must be explicitly enabled
  • SQL injection prevention:
    • Advanced pattern detection for SQL injection attempts
    • Parameter validation for all queries
    • Detection of encoded injection attempts (URL, Unicode, Hex)
  • Query filtering:
    • Blacklist mode: Blocks dangerous operations (DDL, system tables, file operations)
    • Whitelist mode: Only allows explicitly approved query patterns
    • Customizable filtering rules
  • Rate limiting:
    • Per-user request throttling
    • Configurable algorithms (Token Bucket, Sliding Window, Fixed Window)
    • Burst protection

Security Configuration

Configure security features via environment variables:

Variable Description Default
MYSQL_ENABLE_SECURITY Enable all security features true
MYSQL_ENABLE_INJECTION_DETECTION Enable SQL injection detection true
MYSQL_ENABLE_RATE_LIMITING Enable rate limiting true
MYSQL_FILTER_MODE Filter mode (blacklist/whitelist/combined) blacklist
MYSQL_RATE_LIMIT_RPM Rate limit requests per minute 60
MYSQL_RATE_LIMIT_BURST Burst size for rate limiting 10
MYSQL_RATE_LIMIT_ALGORITHM Rate limiting algorithm (token_bucket/sliding_window/fixed_window) token_bucket
MYSQL_MAX_QUERY_LENGTH Maximum query length in characters 10000
MYSQL_MAX_PARAMETER_LENGTH Maximum parameter length 1000
MYSQL_LOG_SECURITY_EVENTS Log security violations true
MYSQL_LOG_REJECTED_QUERIES Log rejected queries true
MYSQL_AUDIT_ALL_QUERIES Audit all queries (performance impact) false

Enabling Write Operations

Write operations are disabled by default. Enable them with caution:

# Enable specific write operations
MYSQL_ALLOW_INSERT=true \
MYSQL_ALLOW_UPDATE=true \
MYSQL_ALLOW_DELETE=true \
uvx fastmcp-mysql

Security Best Practices

  1. Use Prepared Statements: Always use parameters instead of string concatenation
  2. Principle of Least Privilege: Only enable write operations when necessary
  3. Monitor Security Events: Check logs for security violations
  4. Rate Limiting: Adjust limits based on your application needs
  5. Whitelist Mode: Use whitelist mode for production environments when possible

Development

Setup Development Environment

# Clone the repository
git clone https://github.com/jinto/fastmcp-mysql
cd fastmcp-mysql

# Create virtual environment with uv
uv venv
source .venv/bin/activate  # On Windows: .venv\Scripts\activate

# Install dependencies
uv sync --all-extras

# Install pre-commit hooks
pre-commit install

Running Tests

# Run all tests
uv run pytest tests/

# Run with coverage
uv run pytest tests/ --cov=fastmcp_mysql

# Run specific test file
uv run pytest tests/unit/test_query.py

# Run integration tests only
uv run pytest tests/integration/

Code Quality

# Format code
uv run black src tests

# Lint code
uv run ruff check src tests

# Type checking
uv run mypy src

Architecture

The server follows Clean Architecture principles:

src/fastmcp_mysql/
ā”œā”€ā”€ __init__.py                 # Package initialization
ā”œā”€ā”€ __main__.py                 # Entry point for uvx
ā”œā”€ā”€ config.py                   # Configuration management
ā”œā”€ā”€ server.py                   # FastMCP server setup
ā”œā”€ā”€ connection.py               # Database connection management
ā”œā”€ā”€ security/                   # Security module (Clean Architecture)
ā”‚   ā”œā”€ā”€ __init__.py
ā”‚   ā”œā”€ā”€ manager.py              # Security orchestration
ā”‚   ā”œā”€ā”€ config.py               # Security configuration
ā”‚   ā”œā”€ā”€ exceptions.py           # Security exceptions
ā”‚   ā”œā”€ā”€ interfaces/             # Abstract interfaces
ā”‚   ā”‚   ā”œā”€ā”€ injection_detector.py
ā”‚   ā”‚   ā”œā”€ā”€ query_filter.py
ā”‚   ā”‚   ā””ā”€ā”€ rate_limiter.py
ā”‚   ā”œā”€ā”€ injection/              # SQL injection detection
ā”‚   ā”‚   ā”œā”€ā”€ detector.py
ā”‚   ā”‚   ā””ā”€ā”€ patterns.py
ā”‚   ā”œā”€ā”€ filtering/              # Query filtering
ā”‚   ā”‚   ā”œā”€ā”€ blacklist.py
ā”‚   ā”‚   ā”œā”€ā”€ whitelist.py
ā”‚   ā”‚   ā””ā”€ā”€ combined.py
ā”‚   ā””ā”€ā”€ rate_limiting/          # Rate limiting
ā”‚       ā”œā”€ā”€ token_bucket.py
ā”‚       ā”œā”€ā”€ sliding_window.py
ā”‚       ā”œā”€ā”€ fixed_window.py
ā”‚       ā””ā”€ā”€ factory.py
ā””ā”€ā”€ tools/                      # MCP tools
    ā”œā”€ā”€ __init__.py
    ā””ā”€ā”€ query.py                # Query execution tool

Contributing

  1. Fork the repository
  2. Create a feature branch (git checkout -b feature/amazing-feature)
  3. Commit your changes (git commit -m 'Add amazing feature')
  4. Push to the branch (git push origin feature/amazing-feature)
  5. Open a Pull Request

Please ensure:

  • All tests pass
  • Code is formatted with black
  • Type hints are added
  • Documentation is updated

License

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgments

Support

Recommended Servers

playwright-mcp

playwright-mcp

A Model Context Protocol server that enables LLMs to interact with web pages through structured accessibility snapshots without requiring vision models or screenshots.

Official
Featured
TypeScript
Magic Component Platform (MCP)

Magic Component Platform (MCP)

An AI-powered tool that generates modern UI components from natural language descriptions, integrating with popular IDEs to streamline UI development workflow.

Official
Featured
Local
TypeScript
Audiense Insights MCP Server

Audiense Insights MCP Server

Enables interaction with Audiense Insights accounts via the Model Context Protocol, facilitating the extraction and analysis of marketing insights and audience data including demographics, behavior, and influencer engagement.

Official
Featured
Local
TypeScript
VeyraX MCP

VeyraX MCP

Single MCP tool to connect all your favorite tools: Gmail, Calendar and 40 more.

Official
Featured
Local
graphlit-mcp-server

graphlit-mcp-server

The Model Context Protocol (MCP) Server enables integration between MCP clients and the Graphlit service. Ingest anything from Slack to Gmail to podcast feeds, in addition to web crawling, into a Graphlit project - and then retrieve relevant contents from the MCP client.

Official
Featured
TypeScript
Kagi MCP Server

Kagi MCP Server

An MCP server that integrates Kagi search capabilities with Claude AI, enabling Claude to perform real-time web searches when answering questions that require up-to-date information.

Official
Featured
Python
E2B

E2B

Using MCP to run code via e2b.

Official
Featured
Neon Database

Neon Database

MCP server for interacting with Neon Management API and databases

Official
Featured
Qdrant Server

Qdrant Server

This repository is an example of how to create a MCP server for Qdrant, a vector search engine.

Official
Featured
Exa Search

Exa Search

A Model Context Protocol (MCP) server lets AI assistants like Claude use the Exa AI Search API for web searches. This setup allows AI models to get real-time web information in a safe and controlled way.

Official
Featured