// SCAN REPORT

Ponzu App

16 tools. 4 can modify or destroy data without limits.

1 destructive tool with no built-in limits. Policy required.

Last updated:

4 can modify or destroy data
12 read-only
16 tools total
// TOOL MAP
Read (12) Write / Execute (3) Destructive / Financial (1)
// WHAT CAN GO WRONG

Financial operations (ponzu_presale_refund) can move real money. An agent caught in a loop could drain accounts before anyone notices.

Execute tools (ponzu_calc_pricing, ponzu_deploy, ponzu_trigger_launch) trigger processes with side effects. Builds, notifications, workflows — all fired without throttling.

One command. Full control.

Intercept sits between your agent and Ponzu App. Every tool call checked against your policy before it executes — so your agent can do its job without breaking things.

npx -y @policylayer/intercept scan -- npx -y @ponzu_app/mcp
Scans every tool. Generates a policy. Starts enforcing.
Works with Claude Code · Cursor · Claude Desktop · Windsurf · any MCP client
// RECOMMENDED RULES
Block financial tools by default
ponzu_presale_refund:
  rules:
    - action: deny

Financial tools should be explicitly enabled per use case, not open by default.

Cap read operations
ponzu_claim_eth:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 16 PONZU APP TOOLS
FINANCIAL 1 tools
Financial ponzu_presale_refund
EXECUTE 3 tools
Execute ponzu_calc_pricing Execute ponzu_deploy Execute ponzu_trigger_launch
READ 12 tools
Read ponzu_claim_eth Read ponzu_claim_tokens Read ponzu_farm_claim Read ponzu_farm_claim_eth Read ponzu_farm_stake Read ponzu_farm_unstake Read ponzu_get_addresses Read ponzu_get_presale_info Read ponzu_get_skill Read ponzu_presale_buy Read ponzu_swap_eth_for_tokens Read ponzu_swap_tokens_for_eth
// FAQ
Can an AI agent move money through the Ponzu App MCP server? +

Yes. The Ponzu App server exposes 1 financial tools including ponzu_presale_refund. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. Intercept lets you block financial tools by default or set per-tool rate limits.

How many tools does the Ponzu App MCP server expose? +

16 tools across 3 categories: Execute, Financial, Read. 12 are read-only. 4 can modify, create, or delete data.

How do I add Intercept to my Ponzu App setup? +

One line change. Instead of running the Ponzu App server directly, prefix it with Intercept: intercept -c io-github-ponzutech-ponzu.yaml -- npx -y @@ponzu_app/mcp. Download a pre-built policy from policylayer.com/policies/io-github-ponzutech-ponzu and adjust the limits to match your use case.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies available for each. Same risk classification, same one-command setup.

Aibtc 288 tools
paymentsautomation
Xdevplatform/xmcp 135 tools
paymentsautomation
Hiveagent 122 tools
paymentsautomation
Srv D7aoqmh5pdvs7391dcqg 70 tools
paymentsautomation
Indigo Protocol MCP 62 tools
paymentsautomation
MERX - TRON Resource Exchange 54 tools
paymentsautomation
Sui 53 tools
paymentsautomation
Clareo 45 tools
paymentsautomation
policylayer/intercept

Control every MCP tool call
your agent makes.

Set budgets, approvals, and hard limits across MCP servers.

npx -y @policylayer/intercept init
Protect your agent in 30 seconds. Scans your MCP config and generates enforcement policies for every server.
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.