// SCAN REPORT

Universal Blockchain

17 tools. 7 can modify or destroy data without limits.

2 destructive tools with no built-in limits. Policy required.

Last updated:

7 can modify or destroy data
10 read-only
17 tools total
// TOOL MAP
Read (10) Write / Execute (5) Destructive / Financial (2)
// WHAT CAN GO WRONG

Financial operations (withdraw_and_call, withdraw_tokens) can move real money. An agent caught in a loop could drain accounts before anyone notices.

Write operations (create_account, create_project, import_account) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

Execute tools (call_contract) trigger processes with side effects. Builds, notifications, workflows — all fired without throttling.

One command. Full control.

Intercept sits between your agent and Universal Blockchain. Every tool call checked against your policy before it executes — so your agent can do its job without breaking things.

npx -y @policylayer/intercept scan -- npx -y @universal-blockchain-mcp
Scans every tool. Generates a policy. Starts enforcing.
Works with Claude Code · Cursor · Claude Desktop · Windsurf · any MCP client
// RECOMMENDED RULES
Block financial tools by default
withdraw_and_call:
  rules:
    - action: deny

Financial tools should be explicitly enabled per use case, not open by default.

Rate limit write operations
create_account:
  rules:
    - rate_limit: 30/hour

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
check_foundry:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 17 UNIVERSAL BLOCKCHAIN TOOLS
FINANCIAL 2 tools
Financial withdraw_and_call Financial withdraw_tokens
EXECUTE 1 tools
Execute call_contract
WRITE 4 tools
Write create_account Write create_project Write import_account Write request_faucet
READ 10 tools
Read check_foundry Read Cross-Chain Read get_balances Read get_fees Read get_network_info Read list_accounts Read list_chains Read list_tokens Read query_cctx Read show_account
// FAQ
Can an AI agent move money through the Universal Blockchain MCP server? +

Yes. The Universal Blockchain server exposes 2 financial tools including withdraw_and_call, withdraw_tokens. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. Intercept lets you block financial tools by default or set per-tool rate limits.

How do I prevent bulk modifications through Universal Blockchain? +

The Universal Blockchain server has 4 write tools including create_account, create_project, import_account. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.

How many tools does the Universal Blockchain MCP server expose? +

17 tools across 4 categories: Execute, Financial, Read, Write. 10 are read-only. 7 can modify, create, or delete data.

How do I add Intercept to my Universal Blockchain setup? +

One line change. Instead of running the Universal Blockchain server directly, prefix it with Intercept: intercept -c io-github-expertvagabond-universal-blockchain.yaml -- npx -y @universal-blockchain-mcp. Download a pre-built policy from policylayer.com/policies/io-github-expertvagabond-universal-blockchain and adjust the limits to match your use case.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies available for each. Same risk classification, same one-command setup.

Aibtc 288 tools
paymentsautomation
Xdevplatform/xmcp 135 tools
paymentsautomation
Hiveagent 122 tools
paymentsautomation
Srv D7aoqmh5pdvs7391dcqg 70 tools
paymentsautomation
Indigo Protocol MCP 62 tools
paymentsautomation
MERX - TRON Resource Exchange 54 tools
paymentsautomation
Sui 53 tools
paymentsautomation
Clareo 45 tools
paymentsautomation
policylayer/intercept

Control every MCP tool call
your agent makes.

Set budgets, approvals, and hard limits across MCP servers.

npx -y @policylayer/intercept init
Protect your agent in 30 seconds. Scans your MCP config and generates enforcement policies for every server.
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.