Is Elasticsearch MCP Server safe to use?

Elasticsearch MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install Elasticsearch MCP Server?

Elasticsearch MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with Elasticsearch MCP Server?

Elasticsearch MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Elasticsearch MCP Server actively maintained?

Elasticsearch MCP Server is recently maintained — last commit was 47 days ago. It has 6 GitHub stars.

Elasticsearch MCP Server

@tocharianou/elasticsearch-mcp

Elasticsearch MCP Server with multi-version support (ES 5.x-9.x) and comprehensive API access

6 113/wk 0 tools GitHub npm

No known CVEs

No license

Maintained

Last commit 47d ago

Works with most clients

Transport: stdio, sse, http

0 tools

Grade F

Edit this pageView history

Data Search

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-tocharianou-elasticsearch": {
      "args": [
        "-y",
        "@tocharianou/elasticsearch-mcp"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-tocharianou-elasticsearch)](https://mcppedia.org/s/io-github-tocharianou-elasticsearch)

Read me

What Elasticsearch MCP Server does

Enhanced Elasticsearch MCP Server Solution - Security & Threat Analysis Focused

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@tocharianou/elasticsearch-mcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

53/100across 5 weighted dimensions

How we score →

0255075100

−47

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked @tocharianou/elasticsearch-mcp against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Elasticsearch MCP Server safe to use?: Elasticsearch MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Elasticsearch MCP Server?: Elasticsearch MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Elasticsearch MCP Server?: Elasticsearch MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Elasticsearch MCP Server actively maintained?: Elasticsearch MCP Server is recently maintained — last commit was 47 days ago. It has 6 GitHub stars.

Similar servers

Others in data / search

View all →

Brave Search MCP Server98

Web and local search using Brave Search API

86.5k 2

PostgreSQL MCP Server98

Query and manage PostgreSQL databases directly from AI assistants

86.5k 1

Tavily Mcp96

Production ready MCP server with real-time search, extract, map & crawl.

2.0k 4

Qmd95

mini cli search engine for your docs, knowledge bases, meeting notes, whatever. Tracking current sota approaches while being all local

25.8k 4

MCP Security Weekly

Get CVE alerts and security updates for Elasticsearch MCP Server and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Data Search

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-tocharianou-elasticsearch": {
      "args": [
        "-y",
        "@tocharianou/elasticsearch-mcp"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-tocharianou-elasticsearch)](https://mcppedia.org/s/io-github-tocharianou-elasticsearch)

Read me

What Elasticsearch MCP Server does

Enhanced Elasticsearch MCP Server Solution - Security & Threat Analysis Focused

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@tocharianou/elasticsearch-mcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

Elasticsearch MCP Server

Enhanced Elasticsearch MCP Server Solution - Security & Threat Analysis Focused

This is a professional security-focused solution maintained by TocharianOU. It enables comprehensive interaction with all Elasticsearch APIs, specifically optimized for security analysis, threat detection, and incident investigation. Features include advanced security monitoring, anomaly detection, threat hunting, root cause analysis, and comprehensive audit capabilities.

Key Security Features:

Real-time threat detection and security monitoring
Advanced machine learning for anomaly detection
Root cause analysis and attack chain tracking
Security incident investigation and forensics
Compliance monitoring and audit reporting

Note: This solution requires a valid Elasticsearch license (trial, platinum, or enterprise) and is designed for security professionals, SOC teams, and threat analysts.

Connect to your Elasticsearch data directly from any MCP Client (such as Claude Desktop) using the Model Context Protocol (MCP). Interact with your Elasticsearch security data through natural language queries for advanced threat analysis and incident response.

Prerequisites

An Elasticsearch instance
A valid Elasticsearch license (trial, platinum, enterprise) is required.
Elasticsearch authentication credentials (API key or username/password)
MCP Client (e.g. Claude Desktop) or HTTP client for remote access

⚠️ This project requires your Elasticsearch cluster to have a valid license. If you do not have a license, you can activate a trial license as shown below.

Multi-Version Elasticsearch Support

Automatically supports Elasticsearch 5.x - 9.x with intelligent version detection:

Version	Status	Client	Notes
ES 5.x	✅	5.6.22	EOL - Basic tools only
ES 6.x	✅	6.8.8	EOL - ILM available (6.6+)
ES 7.x	✅	7.17.14	LTS - Full features
ES 8.x	✅	8.19.1	Recommended - Latest features, ES\|QL (8.11+)
ES 9.x+	✅	Auto-fallback	Future-ready

Key Features:

Automatic version detection - No manual configuration needed
Smart client selection - Loads the right client for your ES version
Adaptive features - Disables unsupported tools (e.g., Data Streams on ES < 7.9, ES|QL on ES < 8.11)
Version-specific optimizations - Handles API differences transparently

What happens:

Connect → Detect ES version → Load matching client → Register compatible tools

SSL/TLS Connection

To connect to Elasticsearch with a self-signed certificate or in a test environment, you can set the following environment variable:

NODE_TLS_REJECT_UNAUTHORIZED=0

⚠️ This disables Node.js SSL certificate validation. Use only in development or testing environments. For production, always use a trusted CA certificate.

Installation & Setup

Start a Conversation
- Open a new conversation in your MCP Client
- The MCP server should connect automatically
- You can now ask questions about your Elasticsearch data

Configuration Options

The Elasticsearch MCP Server supports the following configuration options:

Elasticsearch Configuration

Environment Variable	Description	Required
`ES_URL`	Your Elasticsearch instance URL	Yes
`ES_API_KEY`

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

53/100across 5 weighted dimensions

How we score →

0255075100

−47

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked @tocharianou/elasticsearch-mcp against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Elasticsearch MCP Server safe to use?: Elasticsearch MCP Server has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Elasticsearch MCP Server?: Elasticsearch MCP Server supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Elasticsearch MCP Server?: Elasticsearch MCP Server is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Elasticsearch MCP Server actively maintained?: Elasticsearch MCP Server is recently maintained — last commit was 47 days ago. It has 6 GitHub stars.