Database MCP servers carry the highest risk of irreversible agent actions — a single miscalled write tool can corrupt production data. The most important assessment signal in this category is Dimension 5 (idempotency and destructive tool annotation): whether read-only queries are annotated separately from writes, whether DELETE and UPDATE operations carry destructiveHint annotations, and whether the server enforces any access scoping. Security posture (Dimension 4) is the secondary focus — credential handling and SQL injection surface are database-specific risks absent from other categories.
No assessed servers in this category yet.
Submit a server for assessment.
Missing a server? Submit it for assessment.
How scores are calculated →