Snowflake

Executes SELECT queries against Snowflake databases through the MCP protocol, streaming results back to the client with automatic connection pooling and query timeout management. The server implements a database client layer that handles Snowflake connector initialization, query parsing, and result serialization into structured JSON responses. Queries are validated before execution to ensure they contain only SELECT operations.

Executes INSERT, UPDATE, DELETE, and CREATE TABLE operations against Snowflake when explicitly enabled via the --allow-write flag. The server implements a SQL write detector that parses query strings to identify write operations, then gates execution based on runtime configuration. Write operations are logged and tracked separately from read operations for audit purposes.

Provides tools to enumerate available databases, schemas within databases, and tables within schemas through a hierarchical traversal API. The server prefetches schema metadata at startup (if enabled) and caches it in memory, allowing fast schema exploration without repeated database round-trips. Each listing operation returns structured metadata including table names, column names, and data types.

Provides detailed column-level metadata for specific tables, including column names, data types, nullable constraints, and default values. The describe_table tool executes DESCRIBE TABLE queries against Snowflake and formats the results into a structured schema representation. This metadata is used by Claude to generate type-safe SQL queries and understand data semantics.

Provides an append_insight tool that allows Claude to accumulate observations and findings about data into a persistent memo resource (memo://insights). The memo is stored in memory during the session and can be referenced in subsequent queries and analysis. This creates a working memory for multi-step data exploration where Claude can record intermediate findings and build on them.

Implements a SQL write detector component that analyzes query strings to identify INSERT, UPDATE, DELETE, CREATE, ALTER, and DROP operations before they reach the database. The detector uses pattern matching on SQL keywords and syntax to classify queries as read or write operations. This enforcement layer prevents write operations when the server is running in read-only mode (default), even if the Snowflake user account has write permissions.

Implements a complete MCP server that exposes Snowflake capabilities as tools (callable functions) and resources (data references) through the Model Context Protocol. The server handles MCP client connections, request routing, tool invocation, and resource serving. It implements the MCP specification for both stdio and HTTP transports, allowing integration with Claude Desktop and other MCP-compatible clients.

Manages Snowflake database connections through a connection pool that reuses connections across multiple queries, reducing connection overhead. The server loads Snowflake credentials from environment variables (SNOWFLAKE_USER, SNOWFLAKE_PASSWORD, SNOWFLAKE_ACCOUNT, etc.) or command-line arguments, and initializes the Snowflake connector with these credentials. Connection parameters are validated at startup to fail fast if credentials are invalid.

Supports filtering of databases, schemas, and tables through exclusion patterns specified in configuration. The server can be configured to hide sensitive databases or schemas from discovery operations (list_databases, list_schemas, list_tables) without requiring changes to Snowflake role permissions. Exclusion patterns are evaluated at query time against the full hierarchical path.