MCP Client Integration

Overview

Databend MCP connects AI assistants to Databend through the Model Context Protocol. It works with Codex, Kimi Code, Cursor, Claude Code, Claude Desktop, Gemini CLI, VS Code, and other MCP-compatible clients.

What you can do:

Generate complex SQL queries from natural language requirements.
Explore databases, tables, schemas, stages, and connections.
Validate query syntax before running it.
Build ETL workflows with COPY, MERGE, and Stage operations.
Create and manage scheduled data pipeline tasks.

For example: "Create a scheduled task that copies parquet files from @my_stage to the orders table every minute, and verify that it is running correctly."

Installation

1. Get a Databend Connection

We recommend using Databend Cloud for the best experience. You can obtain the DSN in two ways.

Option A: Use Use with AI Tools (recommended)

Generates a short-lived DSN with session sandbox safety in one click. Best for getting AI tools connected quickly.

Log in to Databend Cloud.
Click Use with AI Tools.
Choose the database and warehouse for the MCP server.
Keep Session Sandbox Safety enabled unless you explicitly need the agent to write to production objects.

Copy the DSN, which looks like:

databend://user:password@host:443/database?warehouse=warehouse_name

Use with AI Tools

Option B: Build the DSN with your own SQL user

Use this when you want a stable account and permission set (for example, CI pipelines, sharing with teammates, or pairing with a least-privilege policy).

Create a SQL user in Databend Cloud and grant the required privileges. See CREATE USER.
Get your tenant, region, database, and warehouse values from Overview → Connect.

Assemble the DSN using this format:

databend://<username>:<password>@<tenant>.gw.<region>.default.databend.com:443/<database>?warehouse=<warehouse_name>

Self-created users do not get the session sandbox automatically. Scope writes through least-privilege grants and keep DATABEND_MCP_SAFE_MODE=true in the next step.

2. Configure Your MCP Client

Use DATABEND_MCP_SAFE_MODE=true by default. In safe mode, production data remains read-only for AI agents, while write operations are scoped to session sandbox objects.

codex mcp add databend \
  --env DATABEND_DSN='databend://user:password@host:443/database?warehouse=your_warehouse' \
  --env DATABEND_MCP_SAFE_MODE=true \
  -- uv tool run --from mcp-databend@latest mcp-databend

Or add to ~/.codex/config.toml:

[mcp_servers.databend]
command = "uv"
args = ["tool", "run", "--from", "mcp-databend@latest", "mcp-databend"]

[mcp_servers.databend.env]
DATABEND_DSN = "databend://user:password@host:443/database?warehouse=your_warehouse"
DATABEND_MCP_SAFE_MODE = "true"

claude mcp add databend \
  --env DATABEND_DSN='databend://user:password@host:443/database?warehouse=your_warehouse' \
  --env DATABEND_MCP_SAFE_MODE=true \
  -- uv tool run --from mcp-databend@latest mcp-databend

kimi mcp add --transport stdio databend \
  --env DATABEND_DSN='databend://user:password@host:443/database?warehouse=your_warehouse' \
  --env DATABEND_MCP_SAFE_MODE=true \
  -- uv tool run --from mcp-databend@latest mcp-databend

Or add to ~/.kimi/mcp.json:

{
  "mcpServers": {
    "databend": {
      "command": "uv",
      "args": ["tool", "run", "--from", "mcp-databend@latest", "mcp-databend"],
      "env": {
        "DATABEND_DSN": "databend://user:password@host:443/database?warehouse=your_warehouse",
        "DATABEND_MCP_SAFE_MODE": "true"
      }
    }
  }
}

Add to ~/.cursor/mcp.json:

{
  "mcpServers": {
    "databend": {
      "command": "uv",
      "args": ["tool", "run", "--from", "mcp-databend@latest", "mcp-databend"],
      "env": {
        "DATABEND_DSN": "databend://user:password@host:443/database?warehouse=your_warehouse",
        "DATABEND_MCP_SAFE_MODE": "true"
      }
    }
  }
}

Add to ~/.gemini/settings.json:

{
  "mcpServers": {
    "databend": {
      "command": "uv",
      "args": ["tool", "run", "--from", "mcp-databend@latest", "mcp-databend"],
      "env": {
        "DATABEND_DSN": "databend://user:password@host:443/database?warehouse=your_warehouse",
        "DATABEND_MCP_SAFE_MODE": "true"
      }
    }
  }
}

Add to ~/Library/Application Support/Claude/claude_desktop_config.json on macOS, or %APPDATA%\Claude\claude_desktop_config.json on Windows:

{
  "mcpServers": {
    "databend": {
      "command": "uv",
      "args": ["tool", "run", "--from", "mcp-databend@latest", "mcp-databend"],
      "env": {
        "DATABEND_DSN": "databend://user:password@host:443/database?warehouse=your_warehouse",
        "DATABEND_MCP_SAFE_MODE": "true"
      }
    }
  }
}

Open Preferences: Open User Settings (JSON) and add:

{
  "mcp.servers": {
    "databend": {
      "command": "uv",
      "args": ["tool", "run", "--from", "mcp-databend@latest", "mcp-databend"],
      "env": {
        "DATABEND_DSN": "databend://user:password@host:443/database?warehouse=your_warehouse",
        "DATABEND_MCP_SAFE_MODE": "true"
      }
    }
  }
}

export DATABEND_DSN="databend://user:password@host:443/database?warehouse=your_warehouse"
export DATABEND_MCP_SAFE_MODE=true

uv tool run --from mcp-databend@latest mcp-databend

Session Sandbox Safety

DATABEND_MCP_SAFE_MODE controls whether the MCP server runs with session sandbox protection.

Value	Behavior	Recommended usage
`true`	Production objects are read-only for the agent. Write operations are allowed only on session sandbox objects such as `mcp_sandbox_{session_id}_*`.	Default and recommended for AI tools.
`false`	The MCP server can write to objects allowed by the Databend user permissions.	Use only with trusted agents and least-privilege Databend users.

Keep safe mode enabled for most workflows. Disable it only when the agent must modify real production objects and the Databend user already has the minimum required permissions.

Available Tools

Database Operations

Tool	Description
`execute_sql`	Execute SQL queries with timeout protection
`show_databases`	List all databases
`show_tables`	List tables in a database with optional filter
`describe_table`	Get table schema information

Stage Management

Tool	Description
`show_stages`	List all available stages
`list_stage_files`	List files in a specific stage
`create_stage`	Create a new stage with connection support

Connection Management

Tool	Description
`show_connections`	List all available connections

Configuration

Variable	Description	Default
`DATABEND_DSN`	Databend connection string	Required
`DATABEND_MCP_SAFE_MODE`	Enable session sandbox protection for AI tools	`true`
`DATABEND_QUERY_TIMEOUT`	Query timeout in seconds	`300`

For more details on building conversational BI tools, see MCP Server Guide.

MCP Client Integration

Overview

Installation

1. Get a Databend Connection

Option A: Use Use with AI Tools (recommended)

Option B: Build the DSN with your own SQL user

2. Configure Your MCP Client

Session Sandbox Safety

Available Tools

Database Operations

Stage Management

Connection Management

Configuration

Join our growing community

GitHub

Slack

X(Twitter)

YouTube

Or simply contact us directly

Contact Us

Explore Databend Cloud

Try Databend Cloud for FREE

Overview​

Installation​

1. Get a Databend Connection​

Option A: Use Use with AI Tools (recommended)​

Option B: Build the DSN with your own SQL user​

2. Configure Your MCP Client​

Session Sandbox Safety​

Available Tools​

Database Operations​

Stage Management​

Connection Management​

Configuration​

Join our growing community

GitHub

Slack

X(Twitter)

YouTube

Or simply contact us directly

Contact Us

Explore Databend Cloud

Try Databend Cloud for FREE

Overview

Installation

1. Get a Databend Connection

Option A: Use Use with AI Tools (recommended)

Option B: Build the DSN with your own SQL user

2. Configure Your MCP Client

Session Sandbox Safety

Available Tools

Database Operations

Stage Management

Connection Management

Configuration