MCP PostgreSQL Server
v0.6.2Anthropic (Archived)
ARCHIVED WITH UNPATCHED VULNERABILITY: Former Anthropic reference MCP server for PostgreSQL, archived 2025-05-29. A SQL injection flaw disclosed by Trend Micro (June 2025) remains unpatched because the repo is archived, yet the npm package still saw ~21k weekly downloads. NOT RECOMMENDED for any use; a patched community fork (@zeddotdev/postgres-context-server) exists.
Trust Vector Analysis
Dimension Breakdown
🚀Performance & Reliability+
Query execution testing
Schema discovery testing
Connection reliability testing
Large dataset performance testing
Error scenario testing
🛡️Security+
Vulnerability disclosure review and exploitability analysis
Permission boundary testing
Write operation risk assessment
Credential storage review
Logging capabilities assessment
🔒Privacy & Compliance+
Data flow and exposure analysis
Privacy controls assessment
Data filtering capabilities review
Compliance framework review
Metadata exposure analysis
👁️Trust & Transparency+
Documentation completeness review
Query traceability assessment
Source code review
Security documentation review
⚙️Operational Excellence+
Setup complexity assessment
Performance benchmarking
Connection management review
Error messaging assessment
Community activity analysis
- +Comprehensive PostgreSQL feature support including schema introspection
- +Natural language to SQL query generation capabilities
- +Excellent for data analysis and business intelligence workflows
- +Full query visibility and logging for audit purposes
- +Open source code remains publicly auditable in the archived repository
- +Supports connection pooling and performance optimization
- !High risk of exposing sensitive database content to LLM providers
- !No built-in PII detection, redaction, or data anonymization
- !AI can execute destructive operations (DELETE, DROP) if permissions allow
- !Limited granular access control beyond database user permissions
- !Query results with sensitive data sent to external APIs
- !Compliance challenges for regulated industries (HIPAA, PCI-DSS, GDPR)
- !ARCHIVED 2025-05-29 with an UNPATCHED SQL injection vulnerability (Trend Micro, June 2025); use the patched fork @zeddotdev/postgres-context-server instead
Use Case Ratings
code generation
Useful for generating database migration scripts and query code
customer support
Can help support teams query customer data, but privacy concerns exist
content creation
Limited applicability; mainly for content stored in databases
data analysis
Excellent for AI-powered data analysis, reporting, and insights generation
research assistant
Good for analyzing research datasets stored in PostgreSQL
legal compliance
High risk due to potential exposure of sensitive legal data to LLM providers
healthcare
Not recommended for PHI due to data exposure risks; HIPAA compliance challenges
financial analysis
Risky for sensitive financial data; requires strict access controls and data filtering
education
Good for analyzing student data and learning analytics
creative writing
Limited utility unless creative content is database-driven