// SCAN REPORT

Superset

31 tools. 18 can modify or destroy data without limits.

4 destructive tools with no built-in limits. Policy required.

Last updated:

18 can modify or destroy data
13 read-only
31 tools total

Community server · catalogue entry verified 11/06/2026

How to control Superset ↓

TOOL MAP

What Superset exposes to your agents

Read (13) Write / Execute (14) Destructive / Financial (4)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
Critical Risk

The most dangerous Superset tools

Destructive · High delete_calculated_column The tool performs an irreversible deletion operation on calculated columns within a dataset. Destructive · High delete_dataset The tool irreversibly deletes data (a dataset) and causes cascading damage to dependent objects (charts and dashboards). Destructive · High delete_dataset_metric The tool performs deletion, which is an irreversible operation that cannot be undone. Destructive · High remove_chart_from_dashboard This tool irreversibly removes a chart from a dashboard and deletes associated layout nodes.

18 of Superset's 31 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control Superset

PolicyLayer is an MCP gateway — it sits between your AI agents and Superset, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "delete_calculated_column": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "set_chart_filters": {
    "limits": [
      {
        "counter": "set_chart_filters_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "get_chart_filters": {
    "limits": [
      {
        "counter": "get_chart_filters_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Superset — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON SUPERSET →

Free to start. No card required.

FULL CATALOGUE

All 31 Superset tools

DESTRUCTIVE 4 tools
Destructive delete_calculated_column Delete one or more calculated columns from a dataset Destructive delete_dataset Deletes a dataset from Superset. This is a permanent operation and cannot be undone. Be cautious, as deleting Destructive delete_dataset_metric Delete one or more metrics from a dataset Destructive remove_chart_from_dashboard Remove a chart from a dashboard and clean up its layout nodes.
EXECUTE 2 tools
Execute execute_sql Execute SQL query using /api/v1/sqllab/execute/ endpoint Execute refresh_dataset_schema Refreshes a dataset
WRITE 12 tools
Write set_chart_filters Set data filters for a chart. This permanently updates the chart Write find_and_replace_in_sql Performs a simple text find-and-replace on a virtual dataset Write add_chart_to_dashboard Add an existing chart to a dashboard and place it in the layout (position_json). Write create_calculated_column Create one or more new calculated columns for a dataset Write create_chart Create a new chart in Superset. IMPORTANT: You must first call Write create_dataset Creates a new dataset in Superset. You can create a physical dataset by linking to a table in a database, or a Write create_dataset_metric Create one or more new metrics for a dataset Write update_calculated_column Update one or more existing calculated columns in a dataset Write update_chart Update chart properties including metadata, datasource, and visualization settings. This tool replaces the old Write update_dashboard_config Update dashboard properties and/or embedded configuration in a single request. Provide at least one of dashboa Write update_dataset Updates an existing dataset Write update_dataset_metric Update one or more metrics in a dataset
READ 13 tools
Read get_chart_filters Get current data filters applied to a chart. This extracts filters from the chart Read get_current_chart_config Get complete chart information including metadata, configuration, and relationships. This provides comprehensi Read get_dashboard_chart_query_context Get the complete query context for a specific chart in a dashboard, including the chart Read get_dashboard_charts Get all charts in a specific dashboard with their basic information including chart IDs, names, visualization Read get_dashboard_config Get dashboard details and embedded configuration in a single response. Read get_dashboard_filters Get the dashboard Read get_dataset Fetches detailed information for a single dataset by its ID. For virtual datasets, this tool returns the raw S Read get_dataset_columns Get column information of a dataset, useful for referencing available fields when creating metrics Read get_dataset_metrics Get all metrics for a specified dataset Read list_charts Get list of all charts in Superset with optional filtering, sorting, and pagination. Uses Rison or JSON query Read list_dashboards Get paginated list of all dashboards with optional filtering, sorting, and pagination. Uses Rison or JSON quer Read list_databases Get all databases configured in Superset Read list_datasets Retrieves a list of all datasets in Superset. Supports powerful filtering, sorting, and pagination. You can sp
EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Sperax Ecosystem Crypto & DeFI MCP Server 1318 tools
adminautomation
Mcp Afip 1300 tools
adminautomation
Mcp Ap2 1300 tools
adminautomation
BNB Chain MCP 1240 tools
adminautomation
Nodebench 824 tools
adminautomation
Amazon Bedrock Knowledge Base Retrieval MCP Server 805 tools
adminautomation
Amazon Data Processing MCP Server 805 tools
adminautomation
Amazon ECS MCP Server 805 tools
adminautomation
FAQ

Questions about Superset

Can an AI agent delete data through the Superset MCP server? +

Yes. The Superset server exposes 4 destructive tools including delete_calculated_column, delete_dataset, delete_dataset_metric. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through Superset? +

The Superset server has 12 write tools including set_chart_filters, find_and_replace_in_sql, add_chart_to_dashboard. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Superset.

How many tools does the Superset MCP server expose? +

31 tools across 4 categories: Destructive, Execute, Read, Write. 13 are read-only. 18 can modify, create, or delete data.

How do I enforce a policy on Superset? +

Register the Superset MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Superset tool call.

Deterministic rules across all 31 Superset tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON SUPERSET →

Free to start. No card required.

31 Superset tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.