// SCAN REPORT

Mcp Sitecore

149 tools. 91 can modify or destroy data without limits.

21 destructive tools with no built-in limits. Policy required.

Last updated:

91 can modify or destroy data
58 read-only
149 tools total

Community server · catalogue entry verified 12/06/2026

How to control Mcp Sitecore ↓

TOOL MAP

What Mcp Sitecore exposes to your agents

Read (58) Write / Execute (70) Destructive / Financial (21)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
Critical Risk

The most dangerous Mcp Sitecore tools

Destructive · High common-remove-archive-item This tool deletes data in a way that cannot be undone. Destructive · High common-remove-base-template-by-id Removing a base template from a template item is an irreversible structural change to the Sitecore data model. Destructive · High common-remove-item-version-by-id The tool performs an irreversible deletion of item version data in Sitecore. Destructive · High common-remove-item-version-by-path The tool performs irreversible deletion of item versions in a Sitecore CMS.

91 of Mcp Sitecore's 149 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control Mcp Sitecore

PolicyLayer is an MCP gateway — it sits between your AI agents and Mcp Sitecore, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "common-remove-archive-item": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "common-remove-base-template-by-path": {
    "limits": [
      {
        "counter": "common-remove-base-template-by-path_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "common-get-archive": {
    "limits": [
      {
        "counter": "common-get-archive_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Mcp Sitecore — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON MCP SITECORE →

Free to start. No card required.

FULL CATALOGUE

All 149 Mcp Sitecore tools

DESTRUCTIVE 21 tools
Destructive common-remove-archive-item Removes items permanently from the specified archive. Destructive common-remove-base-template-by-id Removes a base template from a template item by its ID. Destructive common-remove-item-version-by-id Removes a version of a Sitecore item by ID. Destructive common-remove-item-version-by-path Removes a version of a Sitecore item by path. Destructive indexing-remove-search-index-item-by-id Removes the item with the specified ID from the search index. Supports wildcard filtering for the index name. Destructive indexing-remove-search-index-item-by-path Removes the item with the specified path from the search index. Supports wildcard filtering for the index name Destructive item-service-delete-item Delete a Sitecore item by its ID. Destructive presentation-remove-placeholder-setting-by-id Removes placeholder setting from the item specified by ID. Destructive presentation-remove-placeholder-setting-by-path Removes placeholder setting from the item specified by path. Destructive presentation-remove-rendering-by-id Removes renderings from an item by owners item ID. Destructive presentation-remove-rendering-by-path Removes renderings from an item by owners item path. Destructive presentation-remove-rendering-parameter-by-id Removes the specified rendering parameter from the rendering placed on the item specified by ID. Destructive presentation-remove-rendering-parameter-by-path Removes the specified rendering parameter from the rendering placed on the item specified by path. Destructive presentation-reset-layout-by-id Resets the layout of an item by Id. Destructive presentation-reset-layout-by-path Resets the layout of an item by path. Destructive security-clear-item-acl-by-id Clears all access rules from a Sitecore item by its ID. Destructive security-clear-item-acl-by-path Clears all access rules from a Sitecore item by its path. Destructive security-remove-domain Removes a Sitecore domain. Destructive security-remove-role Removes a Sitecore role. Destructive security-remove-role-member Removes members from a Sitecore role. Destructive security-remove-user Removes the Sitecore user.
EXECUTE 14 tools
Execute common-invoke-workflow-by-id Executes workflow action for a Sitecore item by its ID. Execute common-invoke-workflow-by-path Executes workflow action for a Sitecore item by its path. Execute common-restart-application Restarts the Sitecore Application pool. Execute indexing-initialize-search-index Initialize one or more Sitecore search indexes. If no name is provided, all indexes will be initialized. Execute indexing-initialize-search-index-item-by-id Rebuilds the index for a given tree with the specified root item by id and index name. Supports wildcard filte Execute indexing-initialize-search-index-item-by-path Rebuilds the index for a given tree with the specified root item by path and index name. Supports wildcard fil Execute indexing-stop-search-index Stop one or more Sitecore search indexes. If no name is provided, all running indexes will be stopped. Execute item-service-run-stored-query Run a stored Sitecore query by its definition item ID. Execute item-service-run-stored-search Run a stored Sitecore search by its definition item ID. Execute run-powershell-script Runs a PowerShell script and returns the output. Execute common-publish-item-by-id Publishes a Sitecore item by its ID. Execute common-publish-item-by-path Publishes a Sitecore item by its path. Execute indexing-resume-search-index Resume one or more Sitecore search indexes. If no name is provided, all paused indexes will be resumed. Execute indexing-suspend-search-index Suspend one or more Sitecore search indexes. If no name is provided, all running indexes will be suspended.
WRITE 56 tools
Write common-remove-base-template-by-path Removes a base template from a template item by its path. Write common-reset-item-field-by-id Resets item fields, specified as either names, fields or template fields by ID. Write common-reset-item-field-by-path Resets item fields, specified as either names, fields or template fields by path. Write common-new-item-clone-by-id Creates a new item clone based on the item provided by its ID. Write common-new-item-clone-by-path Creates a new item clone based on the item provided by its path. Write common-new-item-workflow-event-by-id Creates a new entry in the workflow history for a Sitecore item by its ID. Write common-new-item-workflow-event-by-path Creates a new entry in the workflow history for a Sitecore item by its path. Write security-new-domain Creates a new Sitecore domain. Write security-new-role Creates a new Sitecore role. Write security-new-user Creates a new Sitecore user. Write security-protect-item-by-id Protect a Sitecore item by its ID. Write security-protect-item-by-path Protect a Sitecore item by its path. Write security-unprotect-item-by-id Unprotect a Sitecore item by its ID. Write security-unprotect-item-by-path Unprotect a Sitecore item by its path. Write common-add-base-template-by-id Adds a base template to a template item by its ID. Write common-add-base-template-by-path Adds a base template to a template item by its path. Write common-add-item-version-by-id Creates a version of the item (by its id) in a new language based on an existing language version. Write common-add-item-version-by-path Creates a version of the item (by its path) in a new language based on an existing language version. Write common-convert-from-item-clone-by-id Converts an item from a clone to a fully independent item by its ID. Write common-convert-from-item-clone-by-path Converts an item from a clone to a fully independent item by its path. Write common-restore-archive-item Restores items to the original database from the specified archive. Write common-set-item-template-by-id Sets the item template by the item Write common-set-item-template-by-path Sets the item template by the item Write common-update-item-referrer-by-id Updates all references to the specified item (by its ID) to point to a new provided in the -NewTarget or remov Write common-update-item-referrer-by-path Updates all references to the specified item (by its path) to point to a new provided in the -NewTarget or rem Write item-service-create-item Create a new Sitecore item under parent path with name using template id. Write item-service-edit-item Edit a Sitecore item by its ID. Write presentation-add-placeholder-setting-by-id Adds a placeholder setting to the item specified by ID. Write presentation-add-placeholder-setting-by-path Adds a placeholder setting to the item specified by path. Write presentation-add-rendering-by-id Adds a rendering to presentation of an item specified by item ID. Write presentation-add-rendering-by-path Adds a rendering to presentation of an item specified by path. Write presentation-merge-layout-by-id Merges final and shared layouts by item Id. Write presentation-merge-layout-by-path Merges final and shared layouts by item path. Write presentation-set-layout-by-id Sets layout for an item specified by Id. Write presentation-set-layout-by-path Sets layout for an item specified by path. Write presentation-set-rendering-by-id Updates rendering specified by item ID with new values. Write presentation-set-rendering-by-path Updates rendering specified by item path with new values. Write presentation-set-rendering-parameter-by-id Adds and updates the specified rendering parameter from the rendering placed on the item specified by ID. Write presentation-set-rendering-parameter-by-path Adds and updates the specified rendering parameter from the rendering placed on the item specified by path. Write presentation-switch-rendering-by-id Switches an existing rendering specified by item ID with an alternate one for the item specified by item ID. Write presentation-switch-rendering-by-path Switches an existing rendering specified by path with an alternate one for the item specified by path. Write presentation-switch-rendering-by-unique-id Switches an existing rendering specified by unique ID with an alternate one for the item specified by item ID. Write security-add-item-acl-by-id Adds an access control entry to a Sitecore item by its ID. Write security-add-item-acl-by-path Adds an access control entry to a Sitecore item by its path. Write security-add-role-member Adds a member to a Sitecore role. Write security-disable-user Disables the Sitecore user account. Write security-enable-user Enables the Sitecore user account. Write security-lock-item-by-id Lock a Sitecore item by its ID. Write security-lock-item-by-path Lock a Sitecore item by its path. Write security-set-item-acl-by-id Sets an access control entry to a Sitecore item by its ID. Write security-set-item-acl-by-path Sets an access control entry to a Sitecore item by its path. Write security-set-user Updates properties of a Sitecore user account. Write security-set-user-password Sets a new password for a Sitecore user. Write security-unlock-item-by-id Unlocks a Sitecore item by its ID. Write security-unlock-item-by-path Unlocks a Sitecore item by its path. Write security-unlock-user Unlocks a Sitecore user account that has been locked out due to failed login attempts.
READ 58 tools
Read common-get-archive Gets Sitecore database archives. Read common-get-archive-item Gets a list of items found in the specified archive. Read common-get-cache Gets information about Sitecore caches. Read common-get-database Gets information about Sitecore databases. Read common-get-item-clone-by-id Returns all the clones for the specified item by its ID. Read common-get-item-clone-by-path Returns all the clones for the specified item by its path. Read common-get-item-field-by-id Gets item fields as either names or fields or template fields by its ID. Read common-get-item-field-by-path Gets item fields as either names or fields or template fields by its path. Read common-get-item-reference-by-id Gets item references for a Sitecore item by its ID, showing where it is used throughout the system. Read common-get-item-reference-by-path Gets item references for a Sitecore item by its path, showing where it is used throughout the system. Read common-get-item-referrer-by-id Gets items referring to a Sitecore item by its ID, showing which items reference it. Read common-get-item-referrer-by-path Gets items referring to a Sitecore item by its path, showing which items reference it. Read common-get-item-template-by-id Gets template information for a Sitecore item by its ID. Read common-get-item-template-by-path Gets template information for a Sitecore item by its path. Read common-get-item-workflow-event-by-id Gets entries from the workflow history for the specified item by its ID. Read common-get-item-workflow-event-by-path Gets entries from the workflow history for the specified item by its path. Read common-get-sitecore-job Gets list of the current Sitecore jobs. Read common-test-base-template-by-id Checks if the item inherits from the specified template by its ID. Read common-test-base-template-by-path Checks if the item inherits from the specified template by its path. Read config Prints the configuration of the Sitecore MCP server. Read get-powershell-documentation Gets the documentation describing all Sitecore Powershell commands. Read indexing-find-item Finds items using the Sitecore Content Search API. Date format should be in ISO 8601 format (e.g., Read indexing-get-search-index Get information about Sitecore search indexes. Can filter by name, database, running status, or corrupted stat Read item-service-get-item Get a Sitecore item by its ID. Read item-service-get-item-by-path Get a Sitecore item by its path. Read item-service-get-item-children Get children of a Sitecore item by its ID. Read item-service-get-item-descendants Get descendants of a Sitecore item by its ID. Read item-service-get-languages Get Sitecore languages. Read item-service-search-items Search Sitecore items using the ItemService RESTful API. Read logging-get-logs Retrieves Sitecore logs from the log directory. Read presentation-get-default-layout-device Gets the default layout. Read presentation-get-layout-by-id Gets item layout by Id. Read presentation-get-layout-by-path Gets item layout by path. Read presentation-get-layout-device Gets the layout for the device specified. Read presentation-get-placeholder-setting-by-id Gets placeholder setting assigned on the item specified by ID. Read presentation-get-placeholder-setting-by-path Gets placeholder setting assigned on the item specified by path. Read presentation-get-rendering-by-id Gets rendering definition by item id. Read presentation-get-rendering-by-path Gets rendering definition by item path. Read presentation-get-rendering-parameter-by-id Gets rendering parameter for the item specified by ID. Read presentation-get-rendering-parameter-by-path Gets rendering parameter for the item specified by path. Read provider-get-item-by-id Gets a Sitecore item by its ID. Read provider-get-item-by-path Gets a Sitecore item by its path. Read provider-get-item-by-query Gets a Sitecore item by Sitecore query. Read provider-get-item-by-uri Gets a Sitecore item by its URI. Read security-get-current-user Get the current Sitecore user. Read security-get-domain Get all Sitecore domains. Read security-get-domain-by-name Get a Sitecore domain by its name. Read security-get-item-acl-by-id Gets the access control list (ACL) of a Sitecore item by its ID. Read security-get-item-acl-by-path Gets the access control list (ACL) of a Sitecore item by its path. Read security-get-role-by-filter Get Sitecore roles by filter criteria. Read security-get-role-by-identity Get a Sitecore role by its identity. Read security-get-role-member Get members of a Sitecore role. Read security-get-user-by-filter Get a Sitecore users by filter. Read security-get-user-by-identity Get a Sitecore user by its name. Read security-test-account Tests if a Sitecore user exists and has specific properties. Read security-test-item-acl-by-id Tests whether a user or role has specific access rights to a Sitecore item by its ID. Read security-test-item-acl-by-path Tests whether a user or role has specific access rights to a Sitecore item by its path. Read sitecore-cli-documentation Gets Sitecore CLI documentation describing the most often used commands like index rebuild, item serialization
EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Sperax Ecosystem Crypto & DeFI MCP Server 1318 tools
adminautomation
Mcp Afip 1300 tools
adminautomation
Mcp Ap2 1300 tools
adminautomation
BNB Chain MCP 1240 tools
adminautomation
Nodebench 824 tools
adminautomation
Amazon Bedrock Knowledge Base Retrieval MCP Server 805 tools
adminautomation
Amazon Data Processing MCP Server 805 tools
adminautomation
Amazon ECS MCP Server 805 tools
adminautomation
FAQ

Questions about Mcp Sitecore

Can an AI agent delete data through the Mcp Sitecore MCP server? +

Yes. The Mcp Sitecore server exposes 21 destructive tools including common-remove-archive-item, common-remove-base-template-by-id, common-remove-item-version-by-id. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through Mcp Sitecore? +

The Mcp Sitecore server has 56 write tools including common-remove-base-template-by-path, common-reset-item-field-by-id, common-reset-item-field-by-path. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Mcp Sitecore.

How many tools does the Mcp Sitecore MCP server expose? +

149 tools across 4 categories: Destructive, Execute, Read, Write. 58 are read-only. 91 can modify, create, or delete data.

How do I enforce a policy on Mcp Sitecore? +

Register the Mcp Sitecore MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Mcp Sitecore tool call.

Deterministic rules across all 149 Mcp Sitecore tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON MCP SITECORE →

Free to start. No card required.

149 Mcp Sitecore tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.