@berthojoris/mcp-mysql-server 1.6.1 → 1.6.3

package/CHANGELOG.md

@@ -5,6 +5,35 @@ All notable changes to the MySQL MCP Server will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [1.6.3] - 2025-11-23
+
+### Fixed
+- **Missing tools in toolCategoryMap** - Added 42 missing tools to the permission system
+  - View tools: listViews, getViewInfo, createView, alterView, dropView, showCreateView
+  - Trigger tools: listTriggers, getTriggerInfo, createTrigger, dropTrigger, showCreateTrigger
+  - Function tools: listFunctions, getFunctionInfo, createFunction, dropFunction, showCreateFunction, executeFunction
+  - Index tools: listIndexes, getIndexInfo, createIndex, dropIndex, analyzeIndex
+  - Constraint tools: listForeignKeys, listConstraints, addForeignKey, dropForeignKey, addUniqueConstraint, dropConstraint, addCheckConstraint
+  - Maintenance tools: analyzeTable, optimizeTable, checkTable, repairTable, truncateTable, getTableStatus, flushTable, getTableSize
+  - Server tools: showProcessList, killProcess, showStatus, showVariables, explainQuery, showEngineStatus, getServerInfo, showBinaryLogs, showReplicationStatus
+
+- **Security keyword false positives in run_query** - Refined dangerous keywords to avoid blocking common table/column names
+  - Removed generic keywords: `USER`, `PASSWORD`, `MYSQL`, `SYS` that blocked legitimate queries
+  - Added specific security patterns: `MYSQL.USER`, `MYSQL.DB`, `CREATE USER`, `DROP USER`, `ALTER USER`, `SET PASSWORD`, `LOAD_FILE`, `INFORMATION_SCHEMA.USER_PRIVILEGES`
+  - Queries like `SELECT * FROM users` or `SELECT user, password FROM accounts` now work correctly
+
+## [1.6.2] - 2025-11-22
+
+### Fixed
+- **Security keyword false positive bug** - Fixed issue where `run_query` rejected valid SELECT queries containing table names like "users"
+  - The dangerous keyword check was using substring matching (`includes()`) which caused "USER" to match "USERS"
+  - Changed to word boundary regex matching (`\bKEYWORD\b`) to only match whole words
+  - `SELECT * FROM users` now works correctly while `SELECT USER()` is still blocked as intended
+
+### Changed
+- **Updated tool count in README.md** - Corrected tool count from 30/73 to 85 powerful tools
+  - Accurate count of all available MCP tools across all categories
+
 ## [1.4.16] - 2025-11-22
 
 ### Added

package/README.md

@@ -11,7 +11,7 @@ A fully-featured **Model Context Protocol (MCP)** server for MySQL database inte
 
 - ✅ **Full MCP Protocol Support** - Works with Claude Desktop, Cline, Windsurf, and any MCP-compatible AI agent
 - 🔐 **Secure by Default** - Parameterized queries, SQL injection protection, permission-based access control
-- 🛠️ **30 Powerful Tools** - Complete database operations (CRUD, DDL, queries, schema inspection, transactions, stored procedures, bulk operations)
+- 🛠️ **85 Powerful Tools** - Complete database operations (CRUD, DDL, queries, schema inspection, transactions, stored procedures, bulk operations)
 - 🎛️ **Dynamic Per-Project Permissions** - Each AI agent can have different access levels
 - 🗃️ **DDL Support** - Create, alter, and drop tables (when explicitly enabled)
 - 💎 **Transaction Support** - Full ACID transaction management (BEGIN, COMMIT, ROLLBACK)
@@ -463,7 +463,7 @@ After (DDL enabled):
 
 ## 🛠️ Available Tools
 
-The MCP server provides **73 powerful tools**:
+The MCP server provides **85 powerful tools**:
 
 ### Database Discovery (4 tools)
 

package/dist/config/featureConfig.js

@@ -76,6 +76,59 @@ exports.toolCategoryMap = {
     // Query optimization tools
     analyzeQuery: ToolCategory.UTILITY,
     getOptimizationHints: ToolCategory.UTILITY,
+    // View tools
+    listViews: ToolCategory.LIST,
+    getViewInfo: ToolCategory.LIST,
+    createView: ToolCategory.DDL,
+    alterView: ToolCategory.DDL,
+    dropView: ToolCategory.DDL,
+    showCreateView: ToolCategory.LIST,
+    // Trigger tools
+    listTriggers: ToolCategory.LIST,
+    getTriggerInfo: ToolCategory.LIST,
+    createTrigger: ToolCategory.DDL,
+    dropTrigger: ToolCategory.DDL,
+    showCreateTrigger: ToolCategory.LIST,
+    // Function tools
+    listFunctions: ToolCategory.LIST,
+    getFunctionInfo: ToolCategory.LIST,
+    createFunction: ToolCategory.PROCEDURE,
+    dropFunction: ToolCategory.PROCEDURE,
+    showCreateFunction: ToolCategory.LIST,
+    executeFunction: ToolCategory.PROCEDURE,
+    // Index tools
+    listIndexes: ToolCategory.LIST,
+    getIndexInfo: ToolCategory.LIST,
+    createIndex: ToolCategory.DDL,
+    dropIndex: ToolCategory.DDL,
+    analyzeIndex: ToolCategory.UTILITY,
+    // Constraint tools
+    listForeignKeys: ToolCategory.LIST,
+    listConstraints: ToolCategory.LIST,
+    addForeignKey: ToolCategory.DDL,
+    dropForeignKey: ToolCategory.DDL,
+    addUniqueConstraint: ToolCategory.DDL,
+    dropConstraint: ToolCategory.DDL,
+    addCheckConstraint: ToolCategory.DDL,
+    // Table maintenance tools
+    analyzeTable: ToolCategory.UTILITY,
+    optimizeTable: ToolCategory.UTILITY,
+    checkTable: ToolCategory.UTILITY,
+    repairTable: ToolCategory.UTILITY,
+    truncateTable: ToolCategory.DDL,
+    getTableStatus: ToolCategory.LIST,
+    flushTable: ToolCategory.UTILITY,
+    getTableSize: ToolCategory.LIST,
+    // Process and server management tools
+    showProcessList: ToolCategory.LIST,
+    killProcess: ToolCategory.EXECUTE,
+    showStatus: ToolCategory.LIST,
+    showVariables: ToolCategory.LIST,
+    explainQuery: ToolCategory.UTILITY,
+    showEngineStatus: ToolCategory.LIST,
+    getServerInfo: ToolCategory.LIST,
+    showBinaryLogs: ToolCategory.LIST,
+    showReplicationStatus: ToolCategory.LIST,
 };
 /**
  * Class to manage feature configuration based on runtime or environment variables

package/dist/security/securityLayer.js

@@ -12,17 +12,22 @@ class SecurityLayer {
         this.featureConfig = featureConfig || new featureConfig_js_1.FeatureConfig();
         // Define dangerous SQL keywords that should ALWAYS be blocked (critical security threats)
         // These are blocked even with 'execute' permission
+        // Note: Avoid blocking common table/column names like "user" or "password"
         this.dangerousKeywords = [
             "GRANT",
             "REVOKE",
             "INTO OUTFILE",
             "INTO DUMPFILE",
             "LOAD DATA",
-            "MYSQL",
+            "LOAD_FILE",
+            "INFORMATION_SCHEMA.USER_PRIVILEGES",
+            "MYSQL.USER",
+            "MYSQL.DB",
             "PERFORMANCE_SCHEMA",
-            "SYS",
-            "USER",
-            "PASSWORD",
+            "CREATE USER",
+            "DROP USER",
+            "ALTER USER",
+            "SET PASSWORD",
         ];
         // Define basic allowed SQL operations
         this.allowedOperations = ["SELECT", "INSERT", "UPDATE", "DELETE"];
@@ -160,7 +165,9 @@ class SecurityLayer {
         // When bypassDangerousCheck is true (user has 'execute' permission), skip this check
         if (!bypassDangerousCheck) {
             for (const keyword of this.dangerousKeywords) {
-                if (cleanQuery.includes(keyword)) {
+                // Use word boundary regex to avoid false positives (e.g., "USER" matching "USERS")
+                const keywordRegex = new RegExp(`\\b${keyword}\\b`, "i");
+                if (keywordRegex.test(cleanQuery)) {
                     return {
                         valid: false,
                         error: `Dangerous keyword detected: ${keyword}. This requires 'execute' permission.`,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@berthojoris/mcp-mysql-server",
-  "version": "1.6.1",
+  "version": "1.6.3",
   "description": "Model Context Protocol server for MySQL database integration with dynamic per-project permissions and data export capabilities",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",