// SCAN REPORT

Mcp Growi

11 tools. 2 can modify or destroy data without limits.

2 destructive tools with no built-in limits. Policy required.

Last updated:

2 can modify or destroy data
9 read-only
11 tools total
// TOOL MAP
Read (9) Write / Execute (0) Destructive / Financial (2)
// WHAT CAN GO WRONG

Financial operations (prepare_deposit, prepare_withdraw) can move real money. An agent caught in a loop could drain accounts before anyone notices.

// RECOMMENDED RULES
Block financial tools by default
prepare_deposit:
  rules:
    - action: deny

Financial tools should be explicitly enabled per use case, not open by default.

Cap read operations
get_eth_balance:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 11 MCP GROWI TOOLS
FINANCIAL 2 tools
Financial prepare_deposit Financial prepare_withdraw
READ 9 tools
Read get_eth_balance Read get_gwhf_balance Read get_gwhf_price Read get_lock_status Read get_pending_deposit Read get_pending_withdrawal Read get_usdc_allowance Read get_usdc_balance Read get_vault_status
// FAQ
Can an AI agent move money through the Mcp Growi MCP server? +

Yes. The Mcp Growi server exposes 2 financial tools including prepare_deposit, prepare_withdraw. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. Intercept lets you block financial tools by default or set per-tool rate limits.

How many tools does the Mcp Growi MCP server expose? +

11 tools across 2 categories: Financial, Read. 9 are read-only. 2 can modify, create, or delete data.

How do I add Intercept to my Mcp Growi setup? +

One line change. Instead of running the Mcp Growi server directly, prefix it with Intercept: intercept -c io-github-growi-defi-mcp-growi.yaml -- npx -y @mcp-growi. Download a pre-built policy from policylayer.com/policies/io-github-growi-defi-mcp-growi and adjust the limits to match your use case.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies available for each. Same risk classification, same one-command setup.

Aibtc 308 tools
payments
Agent Passport System — Cryptographic Identity for AI Agents 150 tools
payments
Xdevplatform/xmcp 135 tools
payments
Hiveagent 122 tools
payments
Delx MCP Server 96 tools
payments
Lichess Integration 88 tools
payments
Lichess Integration 88 tools
payments
Voidly 84 tools
payments

Let agents act without letting them run wild.

Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.

GET STARTED →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.