MCP Server Policy

GITLAB MCP POLICY

Enforce policies on every tool call to the GitLab MCP Server. 15 tools listed, categorised, and ready for rules.

gitlab-org/gitlab-mcp-server 10 read 5 write 15 tools total

gitlab repositories merge-requests ci-cd issues

GET STARTED

Download this policy scaffold and add your rules. Intercept enforces them on every tool call before it reaches GitLab.

terminal

# Download policy scaffold


curl -o gitlab.yaml https://raw.githubusercontent.com/policylayer/intercept/main/policies/gitlab.yaml

# Run with Intercept


intercept --policy gitlab.yaml -- npx -y @gitlab-org/gitlab-mcp-server

Server documentation: https://docs.gitlab.com/user/gitlab_duo/model_context_protocol/mcp_server_tools/

READ TOOLS

get_issue Retrieves detailed information about a specific issue

get_mcp_server_version Returns the current version of the GitLab MCP server

get_merge_request Retrieves detailed information about a merge request

get_merge_request_commits Retrieves the list of commits in a merge request

get_merge_request_diffs Retrieves the diffs for a merge request

get_merge_request_pipelines Retrieves the pipelines for a merge request

get_pipeline_jobs Retrieves the jobs for a CI/CD pipeline

get_workitem_notes Retrieves comments from a work item

gitlab_search Searches across the GitLab instance

search_labels Searches for labels in a project or group

WRITE TOOLS

create_issue Creates a new issue in a GitLab project

create_merge_request Creates a merge request in a GitLab project

create_workitem_note Adds a comment to a work item

OTHER TOOLS

manage_pipeline Manages a GitLab CI/CD pipeline

semantic_code_search Searches for code snippets through semantic search

POLICY YAML

This scaffold lists every tool with empty rules. Add conditions — rate limits, argument validation, deny rules — then deploy with Intercept.

gitlab.yaml

version: "1"
description: "Policy for gitlab-org/gitlab-mcp-server"
default: "allow"
tools:
    get_issue:
        rules: []
    get_mcp_server_version:
        rules: []
    get_merge_request:
        rules: []
    get_merge_request_commits:
        rules: []
    get_merge_request_diffs:
        rules: []
    get_merge_request_pipelines:
        rules: []
    get_pipeline_jobs:
        rules: []
    get_workitem_notes:
        rules: []
    gitlab_search:
        rules: []
    search_labels:
        rules: []
    create_issue:
        rules: []
    create_merge_request:
        rules: []
    create_workitem_note:
        rules: []
    manage_pipeline:
        rules: []
    semantic_code_search:
        rules: []

RELATED POLICIES

GitHub 83 tools

repositoriesissues

Azure DevOps 84 tools

FREQUENTLY ASKED QUESTIONS

What tools does the GitLab MCP server expose?

The GitLab MCP Server exposes 15 tools across 3 categories: Read, Write, Other. Each tool can be individually controlled with Intercept policies.

How do I enforce policies on GitLab?

Download the policy scaffold, add rules (rate limits, argument validation, deny rules), then run Intercept as a proxy in front of the GitLab MCP server. Every tool call is evaluated against your YAML policy before execution.

Is the GitLab policy free to use?

Yes. All Intercept policies are open source under the Apache 2.0 licence. Download, modify, and deploy without restrictions.

ENFORCE POLICIES ON GITLAB

Open source. One binary. Zero dependencies.

VIEW ON GITHUB Browse all policies →

GITLAB MCP POLICY

GET STARTED

READ TOOLS

get_issue

get_mcp_server_version

get_merge_request

get_merge_request_commits

get_merge_request_diffs

get_merge_request_pipelines

get_pipeline_jobs

get_workitem_notes

gitlab_search

search_labels

WRITE TOOLS

create_issue

create_merge_request

create_workitem_note