// SCAN REPORT

GoHighLevel MCP Server

64 tools. 35 can modify or destroy data without limits.

9 destructive tools with no built-in limits. Policy required.

Last updated: 11 Jun 2026

35 can modify or destroy data

29 read-only

64 tools total

Community server · catalogue entry verified 11/06/2026

How to control GoHighLevel MCP Server ↓

TOOL MAP

What GoHighLevel MCP Server exposes to your agents

Read (29) Write / Execute (26) Destructive / Financial (9)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS

Critical Risk

The most dangerous GoHighLevel MCP Server tools

Destructive · High delete_appointment This tool permanently removes appointment records from the CRM system. Destructive · High delete_contact This tool permanently removes a contact record from the CRM system. Destructive · High delete_contact_note The tool performs an irreversible deletion operation on contact data. Destructive · High delete_contact_task This tool permanently removes task records associated with a contact in the GoHighLevel CRM.

35 of GoHighLevel MCP Server's 64 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control GoHighLevel MCP Server

PolicyLayer is an MCP gateway — it sits between your AI agents and GoHighLevel MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations

{
  "delete_appointment": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations

{
  "remove_contact_tags": {
    "limits": [
      {
        "counter": "remove_contact_tags_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations

{
  "debug_config": {
    "limits": [
      {
        "counter": "debug_config_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

Create a free account and register GoHighLevel MCP Server — nothing to install.
Add these rules — paste them, or build them visually. Tune the limits to your setup.
Point your MCP client (Claude, Cursor, anything) at your gateway URL.

ENFORCE POLICY ON GOHIGHLEVEL →

Free to start. No card required.

FULL CATALOGUE

All 64 GoHighLevel MCP Server tools

DESTRUCTIVE 9 tools

Destructive delete_appointment Delete an appointment Destructive delete_contact Delete a contact from GoHighLevel Destructive delete_contact_note Delete a note from a contact Destructive delete_contact_task Delete a task from a contact Destructive delete_custom_field Delete a custom field Destructive delete_custom_value Delete a custom value Destructive delete_opportunity Delete an opportunity from GoHighLevel Destructive delete_user Delete a user Destructive remove_contact_from_workflow Remove a contact from a workflow

EXECUTE 1 tools

Execute ghl_request ghl_request

WRITE 25 tools

Write remove_contact_tags Remove tags from a contact Write add_contact_tags Add tags to a contact Write add_contact_to_workflow Enroll a contact into a workflow Write complete_contact_task Set the completed status of a contact's task Write create_appointment create_appointment Write create_contact Create a new contact in GoHighLevel Write create_contact_note Create a note on a contact Write create_contact_task Create a task on a contact Write create_conversation Create a new conversation Write create_custom_field Create a new custom field in a location Write create_custom_value Create a new custom value in a location Write create_opportunity Create a new opportunity in GoHighLevel Write create_user Create a new user (agency-level) Write send_message Send a message in a conversation Write update_appointment Update an existing appointment Write update_contact Update an existing contact in GoHighLevel Write update_contact_note Update a note on a contact Write update_contact_task Update a task on a contact Write update_custom_field Update an existing custom field Write update_custom_value Update an existing custom value Write update_message_status Update the status of a message Write update_opportunity Update an existing opportunity in GoHighLevel Write update_opportunity_status Update the status of an opportunity Write update_user Update an existing user Write upload_form_file Upload a file to a form's custom field

READ 29 tools

Read debug_config Debug tool to show current MCP server configuration and auth status Read get_all_form_submissions Get all form submissions for a location, optionally filtered by form or contact Read get_appointment Get a specific appointment Read get_appointments Get appointments for a contact Read get_calendar Get a specific calendar Read get_calendars Get all calendars for a location Read get_contact Get a single contact by ID Read get_contact_note Get a single note for a contact Read get_contact_notes List all notes for a contact Read get_contact_task Get a single task for a contact Read get_contact_tasks List all tasks for a contact Read get_conversation Get a single conversation Read get_conversations Get conversations for a location Read get_custom_field Get a single custom field by ID Read get_custom_fields List all custom fields for a location (optionally filtered by model) Read get_custom_value Get a single custom value by ID Read get_custom_values List all custom values for a location Read get_forms Get all forms for a location Read get_free_slots get_free_slots Read get_messages Get messages from a conversation Read get_opportunities Get opportunities for a location Read get_opportunity Get a single opportunity by ID Read get_pipelines Get all pipelines for a location Read get_user Get a single user by ID Read get_users_by_location List all users assigned to a location Read get_workflows List all workflows for a location Read ghl_list_endpoints ghl_list_endpoints Read search_contacts Search contacts in a location Read search_users Search users across an agency (company)

EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

FAQ

Questions about GoHighLevel MCP Server

Can an AI agent delete data through the GoHighLevel MCP Server MCP server? +

Yes. The GoHighLevel MCP Server server exposes 9 destructive tools including delete_appointment, delete_contact, delete_contact_note. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through GoHighLevel MCP Server? +

The GoHighLevel MCP Server server has 25 write tools including remove_contact_tags, add_contact_tags, add_contact_to_workflow. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach GoHighLevel MCP Server.

How many tools does the GoHighLevel MCP Server MCP server expose? +

64 tools across 3 categories: Destructive, Read, Write. 29 are read-only. 35 can modify, create, or delete data.

How do I enforce a policy on GoHighLevel MCP Server? +

Register the GoHighLevel MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every GoHighLevel MCP Server tool call.

Deterministic rules across all 64 GoHighLevel MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON GOHIGHLEVEL →

Free to start. No card required.

64 GoHighLevel MCP Server tools catalogued and risk-classified — across an index of 43,000+ MCP servers.