dbt-mcp 1.15.0

Direct Vulnerabilities

Known vulnerabilities in the dbt-mcp package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L Insertion of Sensitive Information Into Sent Data dbt-mcp is an A MCP (Model Context Protocol) server for interacting with dbt resources. Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data in the `emit_tool_called_event` process, which serializes and transmits all tool arguments, including sensitive fields such as `sql_query` and `vars`, to a remote telemetry endpoint without redaction or filtering. An attacker can gain unauthorized access to sensitive information, such as credentials or personally identifiable data, by intercepting or accessing the telemetry payloads sent from affected systems. This is only exploitable if telemetry is enabled by default and the user has not explicitly opted out via environment variables. How to fix Insertion of Sensitive Information Into Sent Data? Upgrade `dbt-mcp` to version 1.17.1 or higher.	[,1.17.1)
L Insertion of Sensitive Information into Log File dbt-mcp is an A MCP (Model Context Protocol) server for interacting with dbt resources. Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File in the `call_tool` process when file logging is enabled via the `DBT_MCP_SERVER_FILE_LOGGING` setting. An attacker can access sensitive information, such as SQL queries and credentials, by reviewing unredacted log files written to disk. This is only exploitable if file logging is explicitly enabled in the server configuration. How to fix Insertion of Sensitive Information into Log File? Upgrade `dbt-mcp` to version 1.17.1 or higher.	[,1.17.1)
H Arbitrary Argument Injection dbt-mcp is an A MCP (Model Context Protocol) server for interacting with dbt resources. Affected versions of this package are vulnerable to Arbitrary Argument Injection via the `node_selection` or `resource_type` parameters in the `_run_dbt_command` process. An attacker can override configuration files and redirect execution by injecting arbitrary command-line flags, such as `--profiles-dir`, which may cause the application to load attacker-controlled configuration and perform unintended actions. This is only exploitable if the attacker can supply crafted tool arguments and has a configuration file accessible at the injected path on the host running the application. How to fix Arbitrary Argument Injection? Upgrade `dbt-mcp` to version 1.17.1 or higher.	[,1.17.1)

Vulnerability

Vulnerable Version

Insertion of Sensitive Information Into Sent Data

dbt-mcp is an A MCP (Model Context Protocol) server for interacting with dbt resources.

Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data in the emit_tool_called_event process, which serializes and transmits all tool arguments, including sensitive fields such as sql_query and vars, to a remote telemetry endpoint without redaction or filtering. An attacker can gain unauthorized access to sensitive information, such as credentials or personally identifiable data, by intercepting or accessing the telemetry payloads sent from affected systems. This is only exploitable if telemetry is enabled by default and the user has not explicitly opted out via environment variables.

How to fix Insertion of Sensitive Information Into Sent Data?

Upgrade dbt-mcp to version 1.17.1 or higher.

[,1.17.1)

Insertion of Sensitive Information into Log File

dbt-mcp is an A MCP (Model Context Protocol) server for interacting with dbt resources.

Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File in the call_tool process when file logging is enabled via the DBT_MCP_SERVER_FILE_LOGGING setting. An attacker can access sensitive information, such as SQL queries and credentials, by reviewing unredacted log files written to disk. This is only exploitable if file logging is explicitly enabled in the server configuration.

How to fix Insertion of Sensitive Information into Log File?

Upgrade dbt-mcp to version 1.17.1 or higher.

[,1.17.1)

Arbitrary Argument Injection

dbt-mcp is an A MCP (Model Context Protocol) server for interacting with dbt resources.

Affected versions of this package are vulnerable to Arbitrary Argument Injection via the node_selection or resource_type parameters in the _run_dbt_command process. An attacker can override configuration files and redirect execution by injecting arbitrary command-line flags, such as --profiles-dir, which may cause the application to load attacker-controlled configuration and perform unintended actions. This is only exploitable if the attacker can supply crafted tool arguments and has a configuration file accessible at the injected path on the host running the application.

How to fix Arbitrary Argument Injection?

Upgrade dbt-mcp to version 1.17.1 or higher.

[,1.17.1)

dbt-mcp@1.15.0

A MCP (Model Context Protocol) server for interacting with dbt resources.

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

Fix vulnerabilities automatically