// SCAN REPORT

Depscope

22 tools. 4 can modify or destroy data without limits.

4 write tools that can modify data. Rate limits recommended.

Last updated:

4 can modify or destroy data
18 read-only
22 tools total
// TOOL MAP
Read (18) Write / Execute (4) Destructive / Financial (0)
// WHAT CAN GO WRONG

Write operations (install_command, package_exists, pin_safe) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

// RECOMMENDED RULES
Rate limit write operations
install_command:
  rules:
    - rate_limit: 30/hour

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
check_bulk:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 22 DEPSCOPE TOOLS
WRITE 4 tools
Write install_command Write package_exists Write pin_safe Write resolve_error
READ 18 tools
Read check_bulk Read check_compatibility Read check_malicious Read check_package Read check_typosquat Read compare_packages Read contact_depscope Read find_alternatives Read get_breaking_changes Read get_health_score Read get_known_bugs Read get_latest_version Read get_migration_path Read get_package_prompt Read get_trending Read get_trust_signals Read get_vulnerabilities Read scan_project
// FAQ
How do I prevent bulk modifications through Depscope? +

The Depscope server has 4 write tools including install_command, package_exists, pin_safe. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.

How many tools does the Depscope MCP server expose? +

22 tools across 2 categories: Read, Write. 18 are read-only. 4 can modify, create, or delete data.

How do I add Intercept to my Depscope setup? +

One line change. Instead of running the Depscope server directly, prefix it with Intercept: intercept -c dev-depscope-mcp.yaml -- npx -y @depscope-mcp. Download a pre-built policy from policylayer.com/policies/dev-depscope-mcp and adjust the limits to match your use case.

Let agents act without letting them run wild.

Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.

GET STARTED →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.