QueryShield

A secure proxy between your AI agents and your databases. Agents send natural language; we validate, translate, enforce row-level security, and audit every call.

SELECT-only AST validator Per-agent RLS Append-only audit MCP-native

Quickstart

curl -X POST https://api.queryshield.dev/v1/tenants?name=Acme

# response → { agent_id, api_key (admin), tenant_id }

curl -X POST https://api.queryshield.dev/v1/databases \
  -H 'X-Admin-Key: qs_...' \
  -H 'Content-Type: application/json' \
  -d '{"alias":"prod","db_type":"postgresql","connection_string":"postgresql://..."}'

curl -X POST https://api.queryshield.dev/v1/query \
  -H 'X-API-Key: qs_...' \
  -H 'Content-Type: application/json' \
  -d '{"database_alias":"prod","query":"how many users signed up last week","mode":"nl","max_rows":10}'

Connect via MCP

Add to your Claude Desktop / Cursor / agent config:

{
  "queryshield": {
    "command": "python",
    "args": ["-m", "queryshield.mcp_server"],
    "env": { "QUERYSHIELD_API_KEY": "qs_..." }
  }
}

Docs at /docs · Health at /health