// SCAN REPORT

Voidly

84 tools. 22 can modify or destroy data without limits.

4 destructive tools with no built-in limits. Policy required.

Last updated:

22 can modify or destroy data
62 read-only
84 tools total

22 Voidly tools can modify or destroy data, with no limits today. PolicyLayer puts allow, deny, and rate-limit rules on every call. Live in minutes.

SECURE VOIDLY →

Free to start. No card required.

TOOL MAP

Read (62) Write / Execute (18) Destructive / Financial (4)

CONTEXT-WINDOW COST

7,619 tokens of tool definitions, loaded on every request
3.8% of a 200k context window
203 heaviest tool: agent_create_attestation

Full per-tool breakdown → Model it in the token calculator →

WHAT CAN GO WRONG

Financial operations (voidly_pay_overview) can move real money. An agent caught in a loop could drain accounts before anyone notices.

Destructive tools (agent_delete_capability, agent_delete_message, agent_memory_delete) permanently delete resources. There is no undo. An agent calling these in a retry loop causes irreversible damage.

Write operations (agent_create_attestation, agent_create_channel, agent_create_task) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

RECOMMENDED RULES

Block financial tools by default
{
  "voidly_pay_overview": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Requires human approval."
      }
    ]
  }
}

Financial tools should be explicitly enabled per use case, not open by default.

Deny destructive operations
{
  "agent_delete_capability": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "agent_create_attestation": {
    "limits": [
      {
        "counter": "agent_create_attestation_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "agent_analytics": {
    "limits": [
      {
        "counter": "agent_analytics_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

Get this policy live on your own Voidly server in minutes. Tune the limits to your setup; PolicyLayer enforces it on every call.

ENFORCE ON MY VOIDLY →

ALL 84 VOIDLY TOOLS

FINANCIAL 1 tools
Financial voidly_pay_overview
DESTRUCTIVE 3 tools
Destructive agent_delete_capability Destructive agent_delete_message Destructive agent_memory_delete
WRITE 18 tools
Write agent_create_attestation Write agent_create_channel Write agent_create_task Write agent_export_data Write agent_invite_to_channel Write agent_key_pin Write agent_mark_read Write agent_mark_read_batch Write agent_memory_set Write agent_ping Write agent_post_to_channel Write agent_register Write agent_register_capability Write agent_register_webhook Write agent_respond_invite Write agent_send_message Write agent_update_profile Write agent_update_task
READ 62 tools
Read agent_analytics Read agent_broadcast_task Read agent_corroborate Read agent_deactivate Read agent_discover Read agent_get_attestation Read agent_get_broadcast Read agent_get_consensus Read agent_get_identity Read agent_get_profile Read agent_get_task Read agent_get_trust Read agent_join_channel Read agent_key_pins Read agent_key_verify Read agent_list_broadcasts Read agent_list_capabilities Read agent_list_channels Read agent_list_invites Read agent_list_tasks Read agent_list_webhooks Read agent_memory_get Read agent_memory_list Read agent_memory_namespaces Read agent_ping_check Read agent_query_attestations Read agent_read_channel Read agent_receive_messages Read agent_relay_stats Read agent_search_capabilities Read agent_trust_leaderboard Read agent_unread_count Read agent_verify_message Read check_domain_blocked Read check_domain_probes Read check_service_accessibility Read check_vpn_accessibility Read compare_countries Read get_active_incidents Read get_alert_stats Read get_censorship_index Read get_community_leaderboard Read get_community_probes Read get_country_status Read get_domain_history Read get_domain_status Read get_election_risk Read get_high_risk_countries Read get_incident_detail Read get_incident_evidence Read get_incident_report Read get_incident_stats Read get_incidents_since Read get_isp_risk_index Read get_isp_status Read get_most_censored Read get_platform_risk Read get_probe_network Read get_risk_forecast Read relay_info Read relay_peers Read verify_claim

FAQ

Can an AI agent move money through the Voidly MCP server? +

Yes. The Voidly server exposes 1 financial tools including voidly_pay_overview. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. PolicyLayer lets you block financial tools by default, require human approval, or set per-tool rate limits — enforced on every call.

Can an AI agent delete data through the Voidly MCP server? +

Yes. The Voidly server exposes 3 destructive tools including agent_delete_capability, agent_delete_message, agent_memory_delete. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through Voidly? +

The Voidly server has 18 write tools including agent_create_attestation, agent_create_channel, agent_create_task. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Voidly.

How many tools does the Voidly MCP server expose? +

84 tools across 4 categories: Destructive, Financial, Read, Write. 62 are read-only. 22 can modify, create, or delete data.

How do I enforce a policy on Voidly? +

Register the Voidly MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies for each. Same risk classification, live on your fleet in minutes.

0nmcp 407 tools
paymentsadmin
TheProtocol — Sovereign AI Agent Platform 380 tools
paymentsadmin
Aibtc 327 tools
paymentsadmin
Bexio 276 tools
paymentsadmin
Businys 248 tools
paymentsadmin
SpaceMolt 182 tools
paymentsadmin
Agent Passport System — Cryptographic Identity for AI Agents 150 tools
paymentsadmin
Xdevplatform/xmcp 135 tools
paymentsadmin

Enforce policy on every Voidly tool call.

Deterministic rules across all 84 Voidly tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

SECURE VOIDLY →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.