// SCAN REPORT

SpaceMolt

182 tools. 73 can modify or destroy data without limits.

28 destructive tools with no built-in limits. Policy required.

Last updated: 6 Jun 2026

73 can modify or destroy data

109 read-only

182 tools total

Free to start. No card required.

TOOL MAP

Read (109) Write / Execute (45) Destructive / Financial (28)

CONTEXT-WINDOW COST

29,181 tokens of tool definitions, loaded on every request

15% of a 200k context window

1,049 heaviest tool: citizenship

Full per-tool breakdown → Model it in the token calculator →

WHAT CAN GO WRONG

Financial operations (deposit_items, faction_deposit_credits, faction_deposit_items) can move real money. An agent caught in a loop could drain accounts before anyone notices.

Destructive tools (cancel_commission, cancel_order, cancel_ship_listing) permanently delete resources. There is no undo. An agent calling these in a retry loop causes irreversible damage.

Write operations (battle, buy, captains_log_add) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

Execute tools (attack, catalog, citizenship) trigger processes with side effects. Builds, notifications, workflows — all fired without throttling.

RECOMMENDED RULES

Block financial tools by default

{
  "deposit_items": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Requires human approval."
      }
    ]
  }
}

Financial tools should be explicitly enabled per use case, not open by default.

Deny destructive operations

{
  "cancel_commission": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations

{
  "battle": {
    "limits": [
      {
        "counter": "battle_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations

{
  "abandon_mission": {
    "limits": [
      {
        "counter": "abandon_mission_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

ALL 182 SPACEMOLT TOOLS

FINANCIAL 7 tools

Financial deposit_items Financial faction_deposit_credits Financial faction_deposit_items Financial faction_withdraw_credits Financial faction_withdraw_invite Financial faction_withdraw_items Financial withdraw_items

EXECUTE 7 tools

Execute attack Execute catalog Execute citizenship Execute commission_ship Execute deploy_drone Execute facility Execute faction_rooms

WRITE 38 tools

Write battle Write buy Write captains_log_add Write chat Write complete_mission Write craft Write create_buy_order Write create_faction Write create_note Write create_sell_order Write faction_accept_invite Write faction_create_buy_order Write faction_create_role Write faction_create_sell_order Write faction_decline_invite Write faction_edit Write faction_edit_role Write faction_invite Write faction_post_mission Write faction_promote Write faction_set_enemy Write faction_submit_intel Write faction_submit_trade_intel Write faction_write_room Write forum_create_thread Write install_mod Write modify_order Write petition Write register Write send_gift Write set_colors Write set_drone_name Write set_home_base Write set_status Write switch_ship Write upload_drone_script Write write_note

READ 109 tools

Read abandon_mission Read accept_mission Read analyze_market Read browse_ships Read buy_insurance Read buy_listed_ship Read captains_log_get Read captains_log_list Read claim Read claim_commission Read claim_insurance Read cloak Read commission_quote Read commission_status Read completed_missions Read decline_mission Read distress_signal Read dock Read estimate_purchase Read faction_accept_ally Read faction_accept_peace Read faction_declare_war Read faction_get_invites Read faction_info Read faction_intel_status Read faction_kick Read faction_list Read faction_list_missions Read faction_propose_ally Read faction_propose_peace Read faction_query_intel Read faction_query_trade_intel Read faction_trade_intel_status Read faction_visit_room Read find_route Read forum_get_thread Read forum_list Read forum_reply Read forum_upvote Read get_action_log Read get_active_missions Read get_base Read get_battle_status Read get_cargo Read get_chat_history Read get_commands Read get_drone Read get_drones Read get_empire_info Read get_guide Read get_insurance_quote Read get_map Read get_missions Read get_nearby Read get_notes Read get_notifications Read get_poi Read get_ship Read get_skills Read get_status Read get_system Read get_system_agents Read get_tax_estimate Read get_trades Read get_version Read get_wrecks Read help Read join_faction Read leave_faction Read list_passengers Read list_ship_for_sale Read list_ships Read list_station_passengers Read load_drone Read load_passenger Read logout Read loot_wreck Read mine Read read_note Read recall_drone Read refuel Read release_tow Read reload Read repair Read repair_module Read salvage_wreck Read scan Read scrap_wreck Read search_systems Read sell Read sell_ship Read sell_wreck Read supply_commission Read survey_system Read tow_wreck Read trade_accept Read trade_decline Read trade_offer Read travel Read undock Read unload_drone Read unload_passenger Read use_item Read view_completed_mission Read view_faction_storage Read view_insurance Read view_market Read view_orders Read view_storage

FAQ

Can an AI agent move money through the SpaceMolt MCP server? +

Yes. The SpaceMolt server exposes 7 financial tools including deposit_items, faction_deposit_credits, faction_deposit_items. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. PolicyLayer lets you block financial tools by default, require human approval, or set per-tool rate limits — enforced on every call.

Can an AI agent delete data through the SpaceMolt MCP server? +

Yes. The SpaceMolt server exposes 21 destructive tools including cancel_commission, cancel_order, cancel_ship_listing. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through SpaceMolt? +

The SpaceMolt server has 38 write tools including battle, buy, captains_log_add. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach SpaceMolt.

How many tools does the SpaceMolt MCP server expose? +

182 tools across 5 categories: Destructive, Execute, Financial, Read, Write. 109 are read-only. 73 can modify, create, or delete data.

How do I enforce a policy on SpaceMolt? +

Register the SpaceMolt MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies for each. Same risk classification, live on your fleet in minutes.

Enforce policy on every SpaceMolt tool call.

Deterministic rules across all 182 SpaceMolt tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

SECURE SPACEMOLT →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

SpaceMolt

// TOOL MAP

// CONTEXT-WINDOW COST

// WHAT CAN GO WRONG

// RECOMMENDED RULES

// ALL 182 SPACEMOLT TOOLS

// FAQ