Codex CLI and Database Migrations: Atlas Skills, MCP Servers, and Schema-Driven Workflows
Codex CLI and Database Migrations: Atlas Skills, MCP Servers, and Schema-Driven Workflows
Database schema migrations sit at the intersection of precision and risk — the kind of task where agentic coding either shines or causes real damage. Codex CLI’s skill and MCP ecosystems now provide a layered toolkit for safe, agent-driven database workflows: the Atlas agent skill for deterministic migration generation, Postgres and Neon MCP servers for live schema inspection, and ORM-specific skills for Drizzle and Prisma. This article maps the full stack, from SKILL.md installation to branch-isolated migration validation.
The Migration Safety Problem
Letting an AI agent write ALTER TABLE statements against a production database is, to put it mildly, inadvisable. The challenge is threefold:
- Schema drift — the agent’s mental model of the database diverges from reality
- Destructive irreversibility — a dropped column cannot be un-dropped
- Data-dependent correctness — a migration that passes on an empty dev database may fail on production data with constraint violations
Codex CLI addresses each layer through a different mechanism: MCP servers provide live schema truth, agent skills enforce deterministic workflows, and branch-based databases offer disposable sandboxes.
graph TD
A[Developer Prompt] --> B[Codex CLI Agent]
B --> C{Schema Inspection}
C --> D[Postgres MCP Server]
C --> E[Neon MCP Server]
B --> F{Migration Generation}
F --> G[Atlas Agent Skill]
F --> H[Drizzle Agent Skill]
F --> I[Prisma MCP Server]
B --> J{Validation}
J --> K[Branch Database]
J --> L[Lint & Test]
J --> M[Dry-Run Apply]
M --> N[PR with Migrations]
Layer 1: Schema Inspection via MCP
Before generating any migration, the agent needs an accurate picture of the current schema. Two MCP server patterns dominate.
The Postgres MCP Server
The reference @modelcontextprotocol/server-postgres package provides read-only schema inspection and query execution1. Registration is a single command:
codex mcp add postgres-dev -- \
npx -y @modelcontextprotocol/server-postgres \
"$DATABASE_URL"
This creates a [mcp_servers.postgres-dev] entry in ~/.codex/config.toml2. The server exposes schema introspection (column names, types, constraints) and read query execution. For migration workflows, the critical capability is inspecting the current state so the agent can diff against desired state.
Security note: passing DATABASE_URL directly as an argument embeds credentials in the config file. The safer pattern uses an environment variable wrapper:
[mcp_servers.postgres-dev]
command = "npx"
args = ["-y", "@modelcontextprotocol/server-postgres"]
env = { DATABASE_URL_FROM = "DEV_DATABASE_URL" }
The Neon MCP Server
Neon’s MCP server adds branch-based isolation to the inspection layer3. Configuration uses the remote MCP transport:
[mcp_servers.neon]
url = "https://mcp.neon.tech/mcp"
bearer_token_env_var = "NEON_API_KEY"
The experimental_use_rmcp_client = true flag is required in config.toml for remote MCP connections. Once configured, Codex can create instant copy-on-write database branches — production-like sandboxes where destructive migrations fail harmlessly4.
Supabase MCP
Supabase’s hosted MCP server provides a similar remote integration, with tools organised into feature groups covering project management, table design, migration generation, and SQL querying5. The remote transport configuration mirrors Neon’s pattern.
Layer 2: The Atlas Agent Skill
Atlas — the “Terraform for databases” — provides the most mature agent skill for migration workflows6. The skill packages Atlas’s entire CLI surface into a SKILL.md that Codex loads automatically when database operations are detected.
Installation
mkdir -p ~/.codex/skills/atlas
# Download SKILL.md and references
curl -o ~/.codex/skills/atlas/SKILL.md \
https://atlasgo.io/guides/ai-tools/agent-skills/SKILL.md
mkdir -p ~/.codex/skills/atlas/references
curl -o ~/.codex/skills/atlas/references/schema-sources.md \
https://atlasgo.io/guides/ai-tools/agent-skills/references/schema-sources.md
For team-wide consistency, commit the skill to .codex/skills/atlas/ in the repository root7.
The Deterministic Workflow
The Atlas skill enforces a seven-step pipeline that the agent follows regardless of prompting style6:
- Inspect —
atlas schema inspectreads the current database state - Edit — modify schema source files (HCL, SQL, or ORM definitions)
- Validate —
atlas schema validatechecks syntax and semantics - Generate —
atlas migrate diffproduces a versioned migration file - Lint —
atlas migrate lintcatches destructive changes, naming violations, and policy breaches - Test —
atlas migrate testexecutes against a dev database (requires Atlas Cloud login) - Apply —
atlas migrate apply --dry-runpreviews, then applies
The skill’s critical rules prevent the agent from hardcoding credentials, skipping the lint step, or applying without a dry-run preview6.
Multi-Dialect Support
Atlas supports MySQL, PostgreSQL, SQLite, SQL Server, and ClickHouse6. The same skill works across dialects because atlas.hcl encapsulates the connection details:
env "dev" {
src = "file://schema.hcl"
url = getenv("DATABASE_URL")
dev = "docker://postgres/17/dev?search_path=public"
migration {
dir = "file://migrations"
}
}
The dev database URL is crucial — it determines whether Atlas operates in schema-scoped or database-scoped mode, affecting how extensions and cross-schema references are handled7.
ORM Integration
Atlas can diff against ORM schema definitions rather than raw SQL. Supported ORMs include GORM, Drizzle, SQLAlchemy, Django, Ent, Sequelize, and TypeORM6. This means the agent can modify a Drizzle TypeScript schema file, and Atlas generates the corresponding SQL migration automatically.
Layer 3: ORM-Specific Skills and MCP Servers
Drizzle Agent Skill
The Drizzle migration skill — available from multiple community authors on SkillsMP and Smithery8 — guides the agent through Drizzle Kit’s generate → review → migrate pipeline:
# Agent follows this sequence:
bun run db:generate # Reads schema files, diffs, emits SQL
# Agent reviews generated SQL for DROP statements
bun run db:migrate # Applies with migration journaling
The skill includes a mandatory SQL review checklist, catching unintended DROP statements and foreign key ordering issues before application8. Install project-locally:
mkdir -p .codex/skills/drizzle-migration
# Place SKILL.md with Drizzle Kit workflow instructions
Prisma MCP Server
Prisma takes a different approach: rather than a SKILL.md skill, it exposes migration tools via a local MCP server built into the Prisma CLI (v6.6.0+)9:
npx -y prisma mcp
This exposes migrate-dev, migrate-status, and migrate-reset as MCP tools, alongside schema introspection and query execution9. Prisma includes built-in safety checks that detect invocation by AI coding agents and block destructive commands like prisma migrate reset --force unless the developer explicitly sets PRISMA_USER_CONSENT_FOR_DANGEROUS_AI_ACTION10.
For Codex CLI, register as a local MCP server:
[mcp_servers.prisma]
command = "npx"
args = ["-y", "prisma", "mcp"]
The Branch-Isolated Migration Pattern
The safest agent-driven migration workflow combines Neon branches with Atlas or Drizzle:
sequenceDiagram
participant Dev as Developer
participant Codex as Codex CLI
participant Neon as Neon MCP
participant Atlas as Atlas Skill
participant Git as Git/PR
Dev->>Codex: "Normalise user addresses into a separate table"
Codex->>Neon: Create branch from main
Neon-->>Codex: Branch connection string
Codex->>Codex: Inspect branch schema
Codex->>Atlas: Generate migration
Atlas-->>Codex: Migration SQL + lint results
Codex->>Neon: Apply migration to branch
Neon-->>Codex: Migration success
Codex->>Codex: Update application code
Codex->>Git: Commit migrations + code changes
Dev->>Dev: Review PR, test with branch connection string
Dev->>Neon: Delete branch after merge
The Neon branch acts as a disposable sandbox — an instant copy-on-write clone of production data where syntax errors and constraint violations fail safely4. The agent can autonomously retry failed migrations on the branch without any risk to production.
AGENTS.md for Database Projects
A production AGENTS.md for database-heavy projects should codify migration safety rules:
# Database Migration Rules
## CRITICAL
- NEVER execute migrations against production databases
- ALWAYS use a branch or dev database for migration testing
- NEVER hardcode database credentials — use environment variables
- ALWAYS run `atlas migrate lint` or review generated SQL before applying
## Workflow
1. Inspect current schema via MCP before generating migrations
2. Generate migration files using Atlas or Drizzle Kit
3. Lint/review generated SQL for destructive operations
4. Apply to branch/dev database first
5. Commit migration files to version control
6. Production application happens via CI/CD pipeline only
## Test Commands
- `atlas migrate lint --env dev` — lint migrations
- `bun run db:generate && bun run db:check` — Drizzle validation
- `npx prisma migrate status` — Prisma migration status
The MCP Server Landscape: Gaps and Maturity
The current database migration MCP ecosystem is uneven. A recent ChatForest survey rated the overall landscape 2.5 out of 511. The tools with solid MCP support — Prisma, Atlas, Drizzle, and Neon — cover the TypeScript and Go ecosystems well. But significant gaps remain:
| Tool | MCP Status | Notes |
|---|---|---|
| Atlas | Community (mcp-atlas), 5 tools |
Declarative, multi-dialect |
| Prisma | Official (CLI v6.6.0+) | Built-in safety checks |
| Drizzle | Community (drizzle-mcp) |
SQLite + PostgreSQL only |
| Neon | Official (remote MCP) | Branch isolation |
| Supabase | Official (remote MCP) | Full project management |
| Flyway | ❌ None | 10.7K GitHub stars, zero MCP11 |
| Alembic | ❌ None | Python/SQLAlchemy standard11 |
| golang-migrate | ❌ None | 16.4K GitHub stars11 |
| Rails migrations | ❌ None | The original migration framework11 |
| Liquibase | ⚠️ Private preview | 19 tools, registration-gated11 |
For teams using Flyway, Alembic, or Rails migrations, the current workaround is writing a custom SKILL.md that wraps the CLI commands — functional but less integrated than a native MCP server.
Multi-Agent Migration Workflows
For complex schema changes spanning multiple services, Codex CLI’s subagent architecture enables parallel migration work:
[agents.schema-analyst]
model = "o3"
instructions = """
Inspect the current database schema via MCP.
Identify all tables affected by the requested change.
Produce a migration plan with dependency ordering.
"""
[agents.migration-writer]
model = "gpt-5.4"
instructions = """
Given the migration plan from schema-analyst,
generate Atlas migration files.
Run atlas migrate lint on each file.
Report any lint warnings.
"""
The schema analyst uses a reasoning model to plan the change, whilst the migration writer generates and validates the actual SQL. This separation prevents the writer from making assumptions about the current schema state.
Known Limitations
- Prisma’s remote MCP server works only with Prisma Postgres — self-hosted PostgreSQL requires the local MCP server9
- Neon branch-based workflows require a Neon account and are limited to PostgreSQL4
- Atlas Cloud features (testing, linting policies) require an Atlas Cloud login6
- No rollback MCP support — none of the current MCP servers expose automated rollback tools; Liquibase’s private preview is the only exception11
- Cross-database orchestration — no MCP server currently handles migrations across multiple database instances in a single workflow11
- ⚠️ The
mcp-atlascommunity MCP server is maintained by a solo developer, and adoption metrics are unclear11
Citations
-
PostgreSQL MCP Server — Anthropic reference implementation ↩
-
Safe AI-powered schema refactoring with OpenAI Codex and Neon — Neon Guides ↩ ↩2 ↩3
-
Database Schema Migration Skill for AI Agents — Atlas Guides ↩ ↩2 ↩3 ↩4 ↩5 ↩6
-
About MCP Servers & How We Built One for Prisma — Prisma Blog ↩
-
Database Migration & Schema Management MCP Servers — ChatForest ↩ ↩2 ↩3 ↩4 ↩5 ↩6 ↩7 ↩8 ↩9