The ultimate MySQL MCP Server for AI-driven database operations. Features smart tool filtering to save context tokens, HTTP streaming for remote deployments, and strict OAuth 2.1 authentication.
- Token Efficiency: Intelligent tool filtering automatically trims unnecessary context, maximizing your AI assistant's context window.
- Remote Ready: First-class HTTP streaming (SSE) support enables seamless deployment across distributed networks.
- Enterprise Security: Secured by strict OAuth 2.1 (RFC 9728/8414) authentication for safe, enterprise-grade data access.
Latest Release — v4.0.0
Highlights
- New Vector Search Tool Group: Fully unlocks MySQL 9.0+ capabilities with dedicated tools for vector and hybrid search operations.
- Advanced Audit & Optimization Engines: Introduces
mysql_audit_searchand the powerful Q5 Index Recommendation engine, elevating your automated database intelligence. - Code Mode Sandbox Integration: Successfully ported
isolated-vmfromdb-mcp, delivering secure, bulletproof arbitrary code execution in a strictly controlled sandbox. - Fortified Security Posture: Eliminated critical vulnerabilities with completely rebuilt adversarial deployment workflows and strict tool input validation, keeping your database completely secure.
- Resilient Transport Layer: Hardened the Streamable HTTP layer against context deadline issues and premature session terminations, delivering zero-downtime reliability.
New Features
- vector: Added a complete MySQL 9.0+ vector search tool group, including advanced hybrid search parameters.
- audit: Added the
mysql_audit_searchtool backed by SystemDb for comprehensive auditing. - optimization: Implemented the Q5 index recommendation engine with full documentation updates.
- codemode: Ported the
isolated-vmsandbox to enable secure, arbitrary code execution. - codemode: Added smart proxies to smooth agent hallucinations and optimize tool input handling across all groups.
- prompts: Implemented dynamic skill injection across all AI prompts.
- observability: Implemented SystemDb metrics persistence.
Changes
- optimization: Implemented structured error responses and automated trace pruning.
- security: Enforced mandatory filters for the audit tool to prevent payload bloat.
- admin: Made server config action required and fixed audit default limits.
- http: Implemented robust session management and synchronized documentation.
Bug Fixes
- ci: Patched all adversarial deployment workflow vulnerabilities.
- codemode: Added support for positional query parameters in
readQueryandwriteQuery. - codemode: Implemented strict input validation to prevent tool hallucinations.
- transport: Removed faulty
res.on('close')logic from streamable HTTP POST initialization, fixing premature session terminations. - server: Resolved "context deadline exceeded" errors during MCP initialization.
- codemode: Optimized transactions tool usage and healed proxy cloning errors.
- codemode: Added graceful handlers for unhandled promise rejections within the sandbox.
Quick Start
npm install -g @neverinfamous/mysql-mcp@4.0.0
docker pull writenotenow/mysql-mcp:v4.0.0