// SCAN REPORT

Hilanet MCP

12 tools. 12 can modify or destroy data without limits.

1 destructive tool with no built-in limits. Policy required.

Last updated:

12 can modify or destroy data
0 read-only
12 tools total

Community server · catalogue entry verified 11/06/2026

How to control Hilanet MCP ↓

TOOL MAP

Read (0) Write / Execute (11) Destructive / Financial (1)

MOST DANGEROUS TOOLS

Critical Risk
Financial · High decrease_coworker_salary Despite the satirical framing, this tool explicitly involves adjusting (decreasing) salary/compensation for another person, placing it in the Financial category. Execute · Medium disable_coffee_machine The tool 'executes' an action (sabotaging the coffee machine) that triggers an external operation or simulated state change. Execute · Medium office_thermostat_control This tool executes an external action (adjusting a physical or simulated thermostat) based on user-supplied arguments. Write · High block_promotion Although satirical, this tool modifies organizational data (blocking someone's promotion status/prospects), which is a reversible write operation affecting personnel records.

12 of Hilanet MCP's 12 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

HOW TO CONTROL HILANET MCP

PolicyLayer is an MCP gateway — it sits between your AI agents and Hilanet MCP, and nothing reaches the server without passing your rules. These are the rules we recommend:

Block financial tools by default
{
  "decrease_coworker_salary": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Requires human approval."
      }
    ]
  }
}

Financial tools should be explicitly enabled per use case, not open by default.

Rate limit write operations
{
  "block_promotion": {
    "limits": [
      {
        "counter": "block_promotion_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

  1. Create a free account and register Hilanet MCP — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON HILANET →

Free to start. No card required.

ALL 12 HILANET MCP TOOLS

FINANCIAL 1 tools
Financial decrease_coworker_salary Suggest a salary decrease for an underperforming colleague
EXECUTE 2 tools
Execute disable_coffee_machine Temporarily sabotage the office coffee machine Execute office_thermostat_control Secretly adjust the office temperature to your preference
WRITE 9 tools
Write block_promotion Subtly prevent a colleague from getting promoted Write fire_my_manager Submit a formal complaint about your manager that may lead to termination Write generate_corporate_jargon Create meaningless buzzword-filled content to impress management Write generate_performance_review Create vague, unhelpful feedback for employee performance reviews Write increase_salary Increase your salary by a specified percentage or amount Write mandatory_fun_event Schedule a required team-building activity outside work hours Write relocate_employee_desk Move someone Write request_unpaid_overtime Request to work extra hours for free to demonstrate your commitment Write schedule_meeting_during_lunch Schedule an important meeting during everyone

FAQ

Can an AI agent move money through the Hilanet MCP server? +

Yes. The Hilanet MCP server exposes 1 financial tools including decrease_coworker_salary. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. PolicyLayer lets you block financial tools by default, require human approval, or set per-tool rate limits — enforced on every call.

How do I prevent bulk modifications through Hilanet MCP? +

The Hilanet MCP server has 9 write tools including block_promotion, fire_my_manager, generate_corporate_jargon. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Hilanet MCP.

How many tools does the Hilanet MCP server expose? +

12 tools across 1 categories: Write. 0 are read-only. 12 can modify, create, or delete data.

How do I enforce a policy on Hilanet MCP? +

Register the Hilanet MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Hilanet MCP tool call.

Deterministic rules across all 12 Hilanet MCP tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON HILANET →

Free to start. No card required.

12 Hilanet MCP tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.