mcp-server-sqlite 1.0.0

An MCP server for SQLite with fine-grained access control
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227

//! The `execute` tool: runs a SQL query against the database and returns typed
//! results. This is the primary tool exposed by the MCP server.

use rmcp::model::{Content, IntoContents};
use schemars::JsonSchema;
use serde::{Deserialize, Serialize};

use super::ToolError;
use crate::{mcp::McpServerSqlite, traits::SqliteServerTool};

#[derive(
    Clone,
    Copy,
    Debug,
    PartialEq,
    Eq,
    PartialOrd,
    Ord,
    Hash,
    Default,
    Serialize,
    Deserialize,
    JsonSchema,
)]
/// Marker type for the `execute` tool. Implements `SqliteServerTool` to wire up
/// the tool's schema, handler, and routing. Stateless — all context comes from
/// `McpServerSqlite`.
pub struct ExecuteTool;

impl SqliteServerTool for ExecuteTool {
    const NAME: &str = "execute";

    type Context = McpServerSqlite;
    type Error = ToolError<ExecuteError>;

    type Input = ExecuteInput;
    type Output = ExecuteOutput;

    fn handle(
        ctx: &Self::Context,
        input: Self::Input,
    ) -> Result<Self::Output, Self::Error> {
        let conn = ctx
            .connection()
            .map_err(|source| ToolError::Connection { source })?;

        let mut stmt = conn.prepare(&input.query).map_err(|source| {
            if matches!(
                source,
                rusqlite::Error::SqliteFailure(
                    rusqlite::ffi::Error {
                        code: rusqlite::ffi::ErrorCode::AuthorizationForStatementDenied,
                        ..
                    },
                    _,
                )
            ) {
                ToolError::AccessDenied {
                    message: format!(
                        "the configured access control policy denied this \
                        statement: {}",
                        input.query,
                    ),
                }
            } else {
                ToolError::Tool(ExecuteError::Prepare { source })
            }
        })?;

        let column_count = stmt.column_count();
        let column_names = (0..column_count)
            .map(|i| stmt.column_name(i).unwrap_or("?").to_owned())
            .collect::<Vec<String>>();

        let rows = stmt
            .query_map([], |row: &rusqlite::Row<'_>| {
                let columns = column_names
                    .iter()
                    .enumerate()
                    .map(|(i, name)| {
                        let value = row
                            .get::<_, rusqlite::types::Value>(i)
                            .map(Value::from)
                            .unwrap_or(Value::Null);
                        (name.clone(), value)
                    })
                    .collect();
                Ok(Row { columns })
            })
            .map_err(|source| ToolError::Tool(ExecuteError::Query { source }))?
            .collect::<Result<Vec<_>, _>>()
            .map_err(|source| {
                ToolError::Tool(ExecuteError::Query { source })
            })?;

        let rows_changed = conn.changes();

        Ok(ExecuteOutput { rows, rows_changed })
    }
}

/// The input parameters for the `execute` tool.
#[derive(
    Clone,
    Debug,
    PartialEq,
    Eq,
    PartialOrd,
    Ord,
    Hash,
    Serialize,
    Deserialize,
    schemars::JsonSchema,
)]
pub struct ExecuteInput {
    /// The SQL query to execute against the database.
    #[schemars(description = "The SQL query to execute")]
    pub query: String,
}

/// The result of executing a SQL query.
#[derive(
    Clone,
    Debug,
    PartialEq,
    PartialOrd,
    Serialize,
    Deserialize,
    schemars::JsonSchema,
)]
pub struct ExecuteOutput {
    /// The rows returned by the query. Empty for statements that do not produce
    /// output (e.g. INSERT, CREATE TABLE).
    pub rows: Vec<Row>,
    /// The number of rows changed by the statement. Zero for queries that only
    /// read data.
    pub rows_changed: u64,
}

/// A single row returned from a query, represented as a mapping of column names
/// to their typed values.
#[derive(
    Clone,
    Debug,
    PartialEq,
    PartialOrd,
    Serialize,
    Deserialize,
    schemars::JsonSchema,
)]
pub struct Row {
    /// The column-value pairs for this row. Each key is the column name and
    /// each value preserves the original SQLite type.
    pub columns: std::collections::BTreeMap<String, Value>,
}

/// A dynamically-typed SQLite value preserving the original column type.
/// Serialized as a tagged enum with `kind` and `value` fields so that consumers
/// can distinguish between types unambiguously.
#[serde_with::serde_as]
#[derive(
    Clone,
    Debug,
    PartialEq,
    PartialOrd,
    Serialize,
    Deserialize,
    schemars::JsonSchema,
)]
#[serde(tag = "kind", content = "value")]
pub enum Value {
    /// A SQL NULL.
    Null,
    /// A 64-bit signed integer.
    Integer(i64),
    /// A 64-bit IEEE 754 floating-point number.
    Real(f64),
    /// A UTF-8 string.
    Text(String),
    /// Raw binary data, hex-encoded for JSON transport.
    Blob(
        #[serde_as(as = "serde_with::hex::Hex")]
        #[schemars(with = "String")]
        Vec<u8>,
    ),
}

/// Converts a rusqlite `Value` into this crate's `Value`, preserving the type
/// tag for each SQLite storage class.
impl From<rusqlite::types::Value> for Value {
    fn from(value: rusqlite::types::Value) -> Self {
        match value {
            rusqlite::types::Value::Null => Self::Null,
            rusqlite::types::Value::Integer(n) => Self::Integer(n),
            rusqlite::types::Value::Real(f) => Self::Real(f),
            rusqlite::types::Value::Text(s) => Self::Text(s),
            rusqlite::types::Value::Blob(b) => Self::Blob(b),
        }
    }
}

/// Errors specific to the `execute` tool's query preparation and result reading
/// logic.
#[derive(Debug, thiserror::Error)]
pub enum ExecuteError {
    /// SQLite failed to prepare the statement. This usually means the SQL is
    /// syntactically invalid or references a table/column that does not exist.
    #[error("failed to prepare statement: {source}")]
    Prepare {
        /// The underlying rusqlite error.
        source: rusqlite::Error,
    },
    /// The query executed but an error occurred while reading a result row.
    #[error("failed to read query results: {source}")]
    Query {
        /// The underlying rusqlite error.
        source: rusqlite::Error,
    },
}

/// Converts the execute-specific error into MCP content by rendering the
/// display string as text.
impl IntoContents for ExecuteError {
    fn into_contents(self) -> Vec<Content> {
        vec![Content::text(self.to_string())]
    }
}