We’re considering allowing Cursor to connect to internal databases (SQL Server, MySQL, Mongo, Dynamo) via MCP, but our DBA and CISO are concerned about security risks.
Has anyone here enabled this in their org? How do you secure it — read-only roles, proxies, IP restrictions, secrets management, etc.?
Curious if MCP-based DB access is viewed as safe enough for enterprise environments or still too risky.