// SCAN REPORT

Exact Online

50 tools. 12 can modify or destroy data without limits.

12 write tools that can modify data. Rate limits recommended.

Last updated:

12 can modify or destroy data
38 read-only
50 tools total
// TOOL MAP
Read (38) Write / Execute (12) Destructive / Financial (0)
// WHAT CAN GO WRONG

Write operations (accounts.contacts.create, accounts.create, accounts.search) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

One command. Full control.

Intercept sits between your agent and Exact Online. Every tool call checked against your policy before it executes — so your agent can do its job without breaking things.

npx -y @policylayer/intercept scan -- npx -y @IndustrialIT/LedgerBotje
Scans every tool. Generates a policy. Starts enforcing.
Works with Claude Code · Cursor · Claude Desktop · Windsurf · any MCP client
// RECOMMENDED RULES
Rate limit write operations
accounts.contacts.create:
  rules:
    - rate_limit: 30/hour

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
admin.feedback:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 50 EXACT ONLINE TOOLS
WRITE 12 tools
Write accounts.contacts.create Write accounts.create Write accounts.search Write logistics.deliveries.create Write logistics.receipts.create Write production.orders.create Write purchasing.orders.add_line Write purchasing.orders.create Write sales.orders.add_line Write sales.orders.create Write sales.returns.create Write warehouse.transfers.create
READ 38 tools
Read admin.feedback Read admin.list Read items.batch.history Read items.search Read items.serial.history Read items.stock Read items.suppliers Read items.time.create Read logistics.deliveries.get Read logistics.deliveries.search Read logistics.receipts.get Read logistics.receipts.search Read logistics.returns.process Read production.assembly.finish Read production.assembly.search Read production.materials.bom Read production.materials.by_product Read production.materials.issue Read production.materials.reversal Read production.orders.get Read production.orders.receipt Read production.orders.routing Read production.orders.search Read purchasing.orders.get Read purchasing.orders.search Read sales.orders.get Read sales.orders.search Read sales.returns.get Read sales.returns.search Read warehouse.current Read warehouse.list Read warehouse.locations.list Read warehouse.locations.stock Read warehouse.shipping.list Read warehouse.switch Read warehouse.transfers.get Read warehouse.transfers.process Read warehouse.transfers.search
// FAQ
How do I prevent bulk modifications through Exact Online? +

The Exact Online server has 12 write tools including accounts.contacts.create, accounts.create, accounts.search. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.

How many tools does the Exact Online MCP server expose? +

50 tools across 2 categories: Read, Write. 38 are read-only. 12 can modify, create, or delete data.

How do I add Intercept to my Exact Online setup? +

One line change. Instead of running the Exact Online server directly, prefix it with Intercept: intercept -c industrialit-ledgerbotje.yaml -- npx -y @IndustrialIT/LedgerBotje. Download a pre-built policy from policylayer.com/policies/industrialit-ledgerbotje and adjust the limits to match your use case.

policylayer/intercept

Control every MCP tool call
your agent makes.

Set budgets, approvals, and hard limits across MCP servers.

npx -y @policylayer/intercept init
Protect your agent in 30 seconds. Scans your MCP config and generates enforcement policies for every server.
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.