MCP tool allowlist

MCP Tool Allowlist

A tool allowlist gives teams a practical control: agents can use approved read-only or low-impact tools while sensitive tools wait for review.

Open scanner preview

Review steps

Allow read-only tools by default only when source and auth checks pass.
Require approval for write, execute, destructive, and financial categories.
Block tools that lack enough context or have irreversible impact.
Review drift whenever the server exposes a new tool.