Thank you for helping improve SQL Server MCP.
- Install the .NET 8 SDK on Windows.
- Create a branch from
main. - Keep changes focused and add tests for behavior changes.
- Run:
dotnet test SqlServerMcp.sln --nologo- Never commit real passwords, connection strings, tokens, server addresses, database names, usernames, SQL module bodies, query results, or logs.
- Use generic values such as
localhost,SampleDb, andreadonly_userin tests and documentation. - Keep the database principal read-only. Do not weaken the SQL guard to make a test pass.
- Report vulnerabilities privately as described in SECURITY.md.
Describe the user impact, security implications, and validation performed. Changes to query validation should include both allowed and rejected SQL cases.