Doris Mcp Server

apache/doris-mcp-serverApache-2.0โญ 268๐Ÿ”ง 48 tools

F1.5SpiderScore (registry)
โš  Hard constraint applied: critical vulnerability
Decision
Not Recommended
Confidence
90%

Doris Mcp Server is not recommended โ€” low score (1.54/10) with 6 critical issues.

Recommended Actions

  • high
    Run In Container
    6 critical vulnerabilities require isolation
  • high
    Limit Permissions
    Restrict tool access to minimum required scope

Do Not

  • โœ—running in production without container isolation
  • โœ—exposing this tool to untrusted input
  • โœ—using for security-sensitive tasks
Risk Flags (3)
  • critical
    sql_injectionร—5
    SQL injection รขโ‚ฌโ€ .execute() called with f-string (user input may reach query)
  • high
    hardcoded_credential
    Hardcoded credential -- secret value embedded in source code
  • high
    token_leakageร—14
    Secret or token may be leaked through error messages, logs, or return values
How This Was Decided
  • negativew=0.5Overall quality score = 1.54/10 (grade F)
  • negativew=0.86 critical security issue(s) detected
  • negativew=0.5170 high-severity issue(s) detected
  • negativew=0.3Tool description clarity score = 0.6/10
Source: SpiderRating automated security scanUpdated: 2026-03-22Protocol: v1.1

Description Quality

Composite: 0.6 / 10

3-Layer Breakdown

Description (38%)
0.6
Security (34%)
6.1
Metadata (28%)
9.4

Description Dimensions

Intent Clarity
0.0
Permission Scope
0.0
Side Effects
2.0
Capability Disclosure
0.2
Operational Boundaries
0.7

Security Analysis

6.1
Score
6
Critical
170
High
1
Medium
1
Low

Findings Redacted

Detailed security findings are hidden during the 90-day responsible disclosure window. Maintainers have been notified.

6 CRITICAL170 HIGH1 MEDIUM

Metadata Health

Provenance (40%)
10.0
Maintenance (35%)
9.0
Popularity (25%)
9.2

Badge

Add this badge to your README:

[![SpiderRating](https://spiderrating.com/badge/apache__doris-mcp-server.svg)](https://spiderrating.com/servers/apache/doris-mcp-server)
๐Ÿ›ก๏ธ

Protect Your Agents

Get a free API key. Every MCP tool call checked against 15,923 rated servers in real-time.

Get Free API Key โ†’
๐Ÿ“Š

Monitor All Your Servers

Dashboard for your entire MCP portfolio. Score tracking, alerts, and compliance reports.

Start Free Trial โ†’
โญ

Scan Locally (Open Source)

Run SpiderShield on your own machine. 46+ security rules, zero data leaves your system.

Star on GitHub โ†’

Similar Servers

McpxAIGC-Hackers/mcpx
1.6F
Mcp DefenderMCP-Defender/MCP-Defender
1.6F
Flow LikeTM9657/flow-like
1.6F
Wazuh Mcp Servergensecaihq/Wazuh-MCP-Server
1.6F
Fastapi Bitnetgrctest/FastAPI-BitNet
1.6F