3 tools. 2 can modify or destroy data without limits.
2 write tools that can modify data. Rate limits recommended.
Last updated:
Write operations (docs_documents_batchUpdate, docs_documents_create) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.
Intercept sits between your agent and Google Workspace Docs (gws CLI). Every tool call checked against your policy before it executes — so your agent can do its job without breaking things.
npx -y @policylayer/intercept scan -- npx -y @gws mcp -s docs docs_documents_batchUpdate:
rules:
- rate_limit: 30/hour Prevents bulk unintended modifications from agents caught in loops.
docs_documents_get:
rules:
- rate_limit: 60/minute Controls API costs and prevents retry loops from exhausting upstream rate limits.
The Google Workspace Docs (gws CLI) server has 2 write tools including docs_documents_batchUpdate, docs_documents_create. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.
3 tools across 2 categories: Read, Write. 1 are read-only. 2 can modify, create, or delete data.
One line change. Instead of running the Google Workspace Docs (gws CLI) server directly, prefix it with Intercept: intercept -c google-workspace-docs.yaml -- npx -y @@gws mcp -s docs. Download a pre-built policy from policylayer.com/policies/google-workspace-docs and adjust the limits to match your use case.
Set budgets, approvals, and hard limits across MCP servers.
npx -y @policylayer/intercept init