Live PostgreSQL schema
Let the AI client inspect Supabase tables, columns, foreign keys, indexes, and generated descriptions before writing SQL.
Supabase / PostgreSQL / hosted MCP
Compare the official Supabase MCP server with a database-focused DataMCP connection. Use Supabase platform tools when you need them, or publish scoped PostgreSQL schema and query tools through a hosted MCP link.
tools/call → productionPOLICY CHECKEDThe production path
Supabase has an official hosted MCP server for Supabase-specific development and project workflows. DataMCP is not that server. It connects to the PostgreSQL database behind a Supabase project using standard database credentials and exposes PostgreSQL schema and query tools through a hosted remote MCP endpoint.
Choose the official server when the AI client needs platform tools such as migrations, logs, advisors, Edge Functions, generated types, or project administration. Scope it to one project and restrict feature groups: without a selected project, the official server can access every project available to the authorized Supabase organization. Choose a DataMCP PostgreSQL connection when the task is database-focused and each client or environment needs a separate SQL permission boundary and revocation path.
For the complete Cursor configuration, connection-mode guidance, and restricted-role SQL, follow the Supabase to Cursor MCP tutorial.
What you get
Let the AI client inspect Supabase tables, columns, foreign keys, indexes, and generated descriptions before writing SQL.
Create read-only, read-write, full-access, or custom table-level MCP links while retaining the PostgreSQL role as another boundary.
Keep the Supabase PostgreSQL connection string encrypted at rest instead of copying it into Cursor, Claude, or VS Code configuration.
Give different clients, people, or environments distinct authentication and permission scopes without sharing the database password.
Review database queries and denied operations by connection and MCP link in the DataMCP activity view.
Use the same hosted PostgreSQL MCP model for Supabase, Neon, RDS, and other compatible PostgreSQL providers.
Source to controlled MCP link
Connect the source once. DataMCP handles discovery, hosted transport, client authentication, and link policy.
Read the setup guideGet the direct or session-pooler connection string from the Supabase Connect panel, preferably for a restricted database role.
Add the PostgreSQL connection to DataMCP and start with a read-only or table-specific permission policy.
Copy the generated remote MCP configuration into Cursor, Claude, ChatGPT, or VS Code and verify schema access before querying rows.
Build or use datamcp
See what stays on your engineering backlog when the MCP runtime and control layer are managed for you.
Supabase platform and project workflows
Supabase authorization to the selected organization
Project, read-only mode, and feature groups
Migrations, logs, advisors, Edge Functions, and more
Not routed through DataMCP
Frequently asked questions
Clear answers about architecture, access, credentials, and supported clients.
No. Supabase provides its own official MCP server for Supabase platform and project workflows. DataMCP connects to the underlying Supabase PostgreSQL database with standard PostgreSQL credentials and exposes database schema and query tools.
Use the official server when an AI client needs Supabase-specific tools such as project management, migrations, logs, advisors, Edge Functions, or generated types. Use DataMCP when the job is controlled PostgreSQL schema and SQL access with separate MCP links, table-level operation policies, and query activity review.
Yes. A DataMCP read-only link allows PostgreSQL schema inspection and SELECT queries while blocking writes. The connected PostgreSQL role remains an independent permission boundary, so a dedicated read-only database role is recommended for sensitive environments.
No. DataMCP's Supabase workflow is a standard PostgreSQL connection. It does not expose Supabase Auth, Storage, Edge Functions, project logs, migrations, advisors, organization management, or other Supabase platform tools.
No. DataMCP stores the PostgreSQL connection string encrypted at rest with AES-256-GCM. The AI client receives a hosted MCP endpoint and DataMCP authentication credential, not the database password.
Supabase explicitly recommends using its MCP server with development or test projects rather than production data. If real data must be accessed, Supabase recommends read-only mode, project scoping, restricted feature groups, and manual tool approval. A DataMCP database connection should likewise use a dedicated least-privilege PostgreSQL role and a narrow MCP link.
Not for the normal hosted setup. Supabase now uses a browser-based authorization flow for compatible MCP clients. Personal access tokens remain an option for CI or clients that cannot complete the interactive flow.
Keep exploring
Compare both MCP routes, choose the right Supabase connection mode, and configure restricted database access step by step.
GUIDEReview the complete PostgreSQL tool, permission, authentication, and activity model.
GUIDEAdd a project-scoped hosted MCP endpoint to Cursor without storing the database password in mcp.json.
GUIDEConnect Claude to a controlled PostgreSQL endpoint and keep database credentials server-side.
GUIDECompare official provider servers, local open-source tools, and hosted PostgreSQL access gateways.
Start with one link
Connect one Supabase PostgreSQL database and create one hosted MCP link on the Free plan.