A secure SQL proxy that sits between Claude and your production databases. It translates natural language questions into SQL using Claude with prompt caching, then validates every query at the AST level to block anything that isn't a SELECT. You get per-agent row-level security with table whitelists and injected WHERE clauses, plus an append-only audit log that stores metadata but never actual row data. The MCP integration exposes three tools: query_database for natural language, query_database_sql for raw SELECT statements, and get_audit_log. Reach for this when you want agents querying enterprise databases without handing them connection strings or trusting them to write safe SQL on their own.
claude mcp add --transport stdio bch1212-queryshield uvx queryshield