// SCAN REPORT

Autoform

11 tools. 7 can modify or destroy data without limits.

7 write tools that can modify data. Rate limits recommended.

Last updated:

7 can modify or destroy data
4 read-only
11 tools total
// TOOL MAP
Read (4) Write / Execute (7) Destructive / Financial (0)
// WHAT CAN GO WRONG

Write operations (autoform_fill_at_coordinates, autoform_fill_batch_acroform, autoform_fill_batch_at_coordinates) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

// RECOMMENDED RULES
Rate limit write operations
autoform_fill_at_coordinates:
  rules:
    - rate_limit: 30/hour

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
autoform_analyze_static_pdf:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 11 AUTOFORM TOOLS
WRITE 7 tools
Write autoform_fill_at_coordinates Write autoform_fill_batch_acroform Write autoform_fill_batch_at_coordinates Write autoform_fill_pdf Write autoform_generate_batch Write autoform_import_template Write autoform_save_coordinates_as_template
READ 4 tools
Read autoform_analyze_static_pdf Read autoform_detect_fields Read autoform_get_pdf_info Read autoform_list_templates
// FAQ
How do I prevent bulk modifications through Autoform? +

The Autoform server has 7 write tools including autoform_fill_at_coordinates, autoform_fill_batch_acroform, autoform_fill_batch_at_coordinates. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.

How many tools does the Autoform MCP server expose? +

11 tools across 2 categories: Read, Write. 4 are read-only. 7 can modify, create, or delete data.

How do I add Intercept to my Autoform setup? +

One line change. Instead of running the Autoform server directly, prefix it with Intercept: intercept -c autoform.yaml -- npx -y @autoform-mcp-server. Download a pre-built policy from policylayer.com/policies/autoform and adjust the limits to match your use case.

Let agents act without letting them run wild.

Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.

GET STARTED →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.