MCP Server Policy
CLICKHOUSE MCP POLICY
Enforce policies on every tool call to the ClickHouse MCP Server. 4 tools listed, categorised, and ready for rules.
GET STARTED
Download this policy scaffold and add your rules. Intercept enforces them on every tool call before it reaches ClickHouse.
# Download policy scaffold
curl -o clickhouse.yaml https://raw.githubusercontent.com/policylayer/intercept/main/policies/clickhouse.yaml
# Run with Intercept
intercept --policy clickhouse.yaml -- npx -y @ClickHouse/mcp-clickhouse Server documentation: https://github.com/ClickHouse/mcp-clickhouse
READ TOOLS
2EXECUTE TOOLS
2POLICY YAML
This scaffold lists every tool with empty rules. Add conditions — rate limits, argument validation, deny rules — then deploy with Intercept.
version: "1"
description: "Policy for ClickHouse/mcp-clickhouse"
default: "allow"
tools:
list_databases:
rules: []
list_tables:
rules: []
run_chdb_select_query:
rules: []
run_query:
rules: []RELATED POLICIES
FREQUENTLY ASKED QUESTIONS
What tools does the ClickHouse MCP server expose?
The ClickHouse MCP Server exposes 4 tools across 2 categories: Read, Execute. Each tool can be individually controlled with Intercept policies.
How do I enforce policies on ClickHouse?
Download the policy scaffold, add rules (rate limits, argument validation, deny rules), then run Intercept as a proxy in front of the ClickHouse MCP server. Every tool call is evaluated against your YAML policy before execution.
Is the ClickHouse policy free to use?
Yes. All Intercept policies are open source under the Apache 2.0 licence. Download, modify, and deploy without restrictions.
ENFORCE POLICIES ON CLICKHOUSE
Open source. One binary. Zero dependencies.