// GLOSSARY -- MCP & TOOL INFRASTRUCTURE

What is Tool Use?

2 min read Updated

Tool use refers to an AI agent's ability to interact with external systems — calling APIs, executing code, querying databases, writing files, or performing any operation — extending its capabilities beyond text generation through protocols like MCP.

WHY IT MATTERS

A language model without tools is sophisticated autocomplete. With tools, it becomes an agent that can act on the world. Tool use is what transforms 'I recommend creating a file called config.yaml' into actually creating it.

Modern tool use follows a standard pattern via MCP: the developer defines available tools with schemas on an MCP server, the agent discovers and invokes them through the MCP protocol, the server executes the tool, and the result is returned for further reasoning.

The tools available to an agent define its capability boundary. A coding agent with access to read, write, and execute tools can refactor entire codebases. The critical question is: which tools should the agent have access to, with what argument constraints, and at what rate?

HOW POLICYLAYER USES THIS

Intercept governs all MCP tool use through YAML-defined policies. When an agent invokes any MCP tool, Intercept evaluates the call — checking the tool name against allow/deny lists, validating arguments against constraints, and enforcing rate limits — before forwarding it to the server. This ensures tool use stays within authorised boundaries. No code changes to the agent or server.

FREQUENTLY ASKED QUESTIONS

What types of tools can AI agents use via MCP?
Virtually anything exposed as an MCP server: file systems, databases, code interpreters, web browsers, API integrations, shell execution, version control, and more. MCP standardises how tools are described and invoked.
How do you secure agent tool use?
Use Intercept to enforce YAML policies on every tool call. Define an explicit allowlist of permitted tools (fail-closed), constrain arguments to safe values, set rate limits, and monitor via audit logs.
What is MCP's role in tool use?
MCP (Model Context Protocol) standardises how tools are described and invoked, creating a universal interface between agents and tool providers. Intercept leverages this standardisation to enforce policies at the protocol level.

FURTHER READING

Enforce policies on every tool call

Intercept is the open-source MCP proxy that enforces YAML policies on AI agent tool calls. No code changes needed.

npx -y @policylayer/intercept
github.com/policylayer/intercept →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.