volcengine · cuericlee · Mar 11, 2026 · Mar 4, 2026 · Mar 4, 2026 · Mar 5, 2026
diff --git a/server/mcp_server_supabase/README.md b/server/mcp_server_supabase/README.md
@@ -2,34 +2,31 @@
 
 English | [简体中文](README_zh.md)
 
-> Supabase MCP server for AIDAP workspaces. It exposes workspace, branch, database, Edge Functions, storage, and TypeScript type generation capabilities through MCP.
+> MCP server for Volcengine Supabase workspaces. It exposes workspace, branch, database, Edge Functions, storage, and TypeScript type generation capabilities through MCP.
 
 | Item | Details |
 | ---- | ---- |
 | Version | v0.1.0 |
-| Description | Supabase MCP server built on top of AIDAP workspaces |
+| Description | MCP server built on top of Volcengine Supabase workspaces |
 | Category | Database / Developer Tools |
-| Tags | Supabase, PostgreSQL, Edge Functions, Storage, AIDAP |
+| Tags | Supabase, PostgreSQL, Edge Functions, Storage, Volcengine |
 
 ## Tools
 
-### Workspace and Branch
+### `account`
 
 | Tool | Description |
 | ---- | ---- |
 | `list_workspaces` | List all available Supabase workspaces in the current account |
-| `get_workspace` | Get workspace details; branch IDs are also accepted |
+| `get_workspace` | Get workspace details |
 | `create_workspace` | Create a new Supabase workspace |
 | `pause_workspace` | Pause a workspace |
 | `restore_workspace` | Resume a paused workspace |
-| `get_workspace_url` | Get the API endpoint for a workspace or branch |
-| `get_publishable_keys` | Get publishable, anon, and service role keys |
-| `list_branches` | List branches under a workspace |
-| `create_branch` | Create a development branch |
-| `delete_branch` | Delete a development branch |
-| `reset_branch` | Reset a branch to its baseline state |
+### `docs`
+
+No tools are currently exposed.
 
-### Database
+### `database`
 
 | Tool | Description |
 | ---- | ---- |
@@ -38,18 +35,38 @@ English | [简体中文](README_zh.md)
 | `list_migrations` | List records from `supabase_migrations.schema_migrations` |
 | `list_extensions` | List installed PostgreSQL extensions |
 | `apply_migration` | Run migration SQL and record it in `supabase_migrations.schema_migrations` |
+
+### `debugging`
+
+No tools are currently exposed.
+
+### `development`
+
+| Tool | Description |
+| ---- | ---- |
+| `get_workspace_url` | Get the API endpoint for a workspace |
+| `get_publishable_keys` | Get publishable, anon, and service role keys |
 | `generate_typescript_types` | Generate TypeScript definitions from schema metadata |
 
-### Edge Functions
+### `functions`
 
 | Tool | Description |
 | ---- | ---- |
-| `list_edge_functions` | List Edge Functions in a workspace or branch |
+| `list_edge_functions` | List Edge Functions in a workspace |
 | `get_edge_function` | Get the source code and configuration of an Edge Function |
 | `deploy_edge_function` | Create or update an Edge Function |
 | `delete_edge_function` | Delete an Edge Function |
 
-### Storage
+### `branching`
+
+| Tool | Description |
+| ---- | ---- |
+| `list_branches` | List branches under a workspace |
+| `create_branch` | Create a development branch |
+| `delete_branch` | Delete a development branch |
+| `restore_branch` | Restore branch data to a specified point in time and return the restored branch ID |
+
+### `storage`
 
 | Tool | Description |
 | ---- | ---- |
@@ -60,20 +77,31 @@ English | [简体中文](README_zh.md)
 
 ## Authentication
 
-Use Volcengine AK/SK authentication. Obtain your credentials from the [Volcengine API Access Key console](https://console.volcengine.com/iam/keymanage/).
+- Local deployment: use `VOLCENGINE_ACCESS_KEY`, `VOLCENGINE_SECRET_KEY`, and optional `VOLCENGINE_SESSION_TOKEN`
+
+Static AK/SK can be obtained from the [Volcengine API Access Key console](https://console.volcengine.com/iam/keymanage/).
 
 ## Environment Variables
 
 | Name | Required | Default | Description |
 | ---- | ---- | ---- | ---- |
-| `VOLCENGINE_ACCESS_KEY` | Yes | - | Volcengine access key |
-| `VOLCENGINE_SECRET_KEY` | Yes | - | Volcengine secret key |
-| `VOLCENGINE_REGION` | No | `cn-beijing` | Region used for the AIDAP API |
-| `DEFAULT_WORKSPACE_ID` | No | - | Default target used when `workspace_id` is omitted |
-| `READ_ONLY` | No | `false` | Set to `true` to block all mutating tools |
+| `VOLCENGINE_ACCESS_KEY` | Yes | - | Volcengine access key for local static authentication |
+| `VOLCENGINE_SECRET_KEY` | Yes | - | Volcengine secret key for local static authentication |
+| `VOLCENGINE_SESSION_TOKEN` | No | - | Optional session token used with temporary local credentials |
+| `VOLCENGINE_REGION` | No | `cn-beijing` | Region used for the Volcengine API |
+| `WORKSPACE_REF` | No | - | Startup-level hard scope. When set, `account` tools are hidden and workspace-scoped calls are forced to this target |
+| `FEATURES` | No | `account,database,debugging,development,docs,functions,branching` | Official feature groups. `storage` is disabled by default |
+| `DISABLED_TOOLS` | No | - | Comma-separated denylist applied after all other policy filters |
+| `READ_ONLY` | No | `false` | Startup-level read-only switch; when enabled, mutating tools are hidden |
 | `SUPABASE_WORKSPACE_SLUG` | No | `default` | Project slug used by Edge Functions APIs |
 | `SUPABASE_ENDPOINT_SCHEME` | No | `http` | Endpoint scheme used when building workspace URLs |
-| `PORT` | No | `8000` | Port used when running the server directly |
+| `MCP_SERVER_HOST` | No | `0.0.0.0` | Host used by `sse` and `streamable-http` transports |
+| `MCP_SERVER_PORT` | No | `8000` | Preferred port variable for network transports |
+| `PORT` | No | `8000` | Backward-compatible port variable |
+| `MCP_MOUNT_PATH` | No | `/` | Base mount path for HTTP transports |
+| `MCP_SSE_PATH` | No | `/sse` | SSE endpoint path |
+| `MCP_MESSAGE_PATH` | No | `/messages/` | SSE message POST path |
+| `STREAMABLE_HTTP_PATH` | No | `/mcp` | Streamable HTTP endpoint path |
 
 ## Deployment
 
@@ -83,7 +111,22 @@ Use Volcengine AK/SK authentication. Obtain your credentials from the [Volcengin
 uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-server-supabase
 ```
 
-### MCP client config with local source
+### Run with an explicit transport
+
+```bash
+uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-server-supabase --transport stdio
+uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-server-supabase --transport sse --host 0.0.0.0 --port 8000
+uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-server-supabase --transport streamable-http --host 0.0.0.0 --port 8000
+```
+
+### Dedicated network entrypoints
+
+```bash
+uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-server-supabase-sse
+uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-server-supabase-streamable
+```
+
+### AI tool integration with local source
 
 ```json
 {
@@ -100,14 +143,15 @@ uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-s
         "VOLCENGINE_ACCESS_KEY": "<your-access-key>",
         "VOLCENGINE_SECRET_KEY": "<your-secret-key>",
         "VOLCENGINE_REGION": "cn-beijing",
-        "DEFAULT_WORKSPACE_ID": "ws-xxxxxxxx"
+        "WORKSPACE_REF": "ws-xxxxxxxx",
+        "FEATURES": "database,functions"
       }
     }
   }
 }
 ```
 
-### MCP client config with `uvx`
+### AI tool integration with `uvx`
 
 ```json
 {
@@ -123,7 +167,8 @@ uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-s
         "VOLCENGINE_ACCESS_KEY": "<your-access-key>",
         "VOLCENGINE_SECRET_KEY": "<your-secret-key>",
         "VOLCENGINE_REGION": "cn-beijing",
-        "DEFAULT_WORKSPACE_ID": "ws-xxxxxxxx"
+        "WORKSPACE_REF": "ws-xxxxxxxx",
+        "FEATURES": "database,functions"
       }
     }
   }
@@ -134,25 +179,55 @@ uv --directory /ABSOLUTE/PATH/TO/mcp-server/server/mcp_server_supabase run mcp-s
 
 ```bash
 python3 -m mcp_server_supabase.server --port 8000
+python3 -m mcp_server_supabase.server --transport sse --host 0.0.0.0 --port 8000
 ```
 
-The package exposes both `mcp-server-supabase` and `supabase-aidap`. The examples above use `mcp-server-supabase`.
+The package exposes `mcp-server-supabase`, `mcp-server-supabase-sse`, and `mcp-server-supabase-streamable`. The examples above use `mcp-server-supabase`.
 
 ## Usage Notes
 
-- If `workspace_id` is omitted, the server falls back to `DEFAULT_WORKSPACE_ID` when configured.
-- If a branch ID such as `br-xxxx` is provided, the server resolves the corresponding workspace automatically.
+- `WORKSPACE_REF` applies a hard workspace scope for the server instance and removes `workspace_id` from visible tool schemas.
+- When `WORKSPACE_REF` is active, `account` tools are hidden and any explicit `workspace_id` outside the scope is rejected.
+- `FEATURES` accepts only the official groups: `account`, `docs`, `database`, `debugging`, `development`, `functions`, `storage`, and `branching`.
+- If `FEATURES` is not set, the default enabled groups are `account`, `database`, `debugging`, `development`, `docs`, `functions`, and `branching`. `storage` stays disabled by default.
+- `READ_ONLY=true` hides all mutating tools for the server instance.
+- `DISABLED_TOOLS` takes tool names such as `execute_sql,deploy_edge_function` and removes them after the rest of the policy has been resolved.
+- `workspace_id` and `workspace_ref` accept workspace IDs only. Branch IDs such as `br-xxxx` are rejected.
 - `get_publishable_keys` resolves the default branch automatically when needed.
-- `reset_branch` accepts `migration_version`, but the current AIDAP API ignores that value and performs a branch reset only.
+- `restore_branch` supports optional `time` and `source_branch_id` arguments and returns `backup_branch_id`.
 - `deploy_edge_function` currently supports `native-node20/v1`, `native-python3.9/v1`, `native-python3.10/v1`, and `native-python3.12/v1`.
+- `--transport sse` serves the MCP SSE endpoint at `MCP_SSE_PATH` and the message endpoint at `MCP_MESSAGE_PATH`.
+- `--transport streamable-http` serves the MCP HTTP endpoint at `STREAMABLE_HTTP_PATH`.
+- For remote deployments, `streamable-http` is usually the better default; `sse` remains available for clients that still require it.
+
+## Policy Precedence
+
+### Tool filtering order at startup
+
+1. `features` selects the base tool set
+2. `workspace_ref` removes `account` tools and scopes the server to one workspace
+3. `read_only` removes all mutating tools
+4. `disabled_tools` removes specific tool names last
+
+## Integration Modes
+
+### AI tools
+
+This server works with Cursor, Claude Desktop, Cline, Trae, and any other MCP client that supports `stdio`, `sse`, or `streamable-http`.
+
+- Local integrations usually use `stdio`
+- Configure `command`, `args`, and `env` in the client
+- Local source mode usually injects static AK/SK through `env`
+- The two `mcpServers` JSON examples above follow this pattern
+
+### Custom AI agents
 
-## Compatible Clients
+If your agent runtime can spawn a local MCP process, you can keep using `stdio`. If your agent runs on a server, in containers, or in a multi-instance environment, `streamable-http` or `sse` is usually the better integration path.
 
-- Cursor
-- Claude Desktop
-- Cline
-- Trae
-- Any MCP client that supports `stdio`
+- `stdio`: have the agent spawn `mcp-server-supabase` as a child process
+- `streamable-http`: connect to `http://<host>:<port>/mcp`
+- `sse`: connect to `http://<host>:<port>/sse` and post messages to `http://<host>:<port>/messages/`
+- Tool visibility and workspace scope are fixed when the server starts through env vars or CLI flags
 
 ## License