Keycrm

46 tools. 24 can modify or destroy data without limits.

1 destructive tool with no built-in limits. Policy required.

Last updated:

24 can modify or destroy data
22 read-only
46 tools total

Community server · catalogue entry verified 29/06/2026

How to control Keycrm ↓

What Keycrm exposes to your agents

Read (22) Write / Execute (23) Destructive / Financial (1)
Critical Risk

The most dangerous Keycrm tools

24 of Keycrm's 46 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control Keycrm

PolicyLayer is an MCP gateway — it sits between your AI agents and Keycrm, and nothing reaches the server without passing your rules. These are the rules we recommend:

Block financial tools by default
{
  "add_order_payment": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Requires human approval."
      }
    ]
  }
}

Financial tools should be explicitly enabled per use case, not open by default.

Rate limit write operations
{
  "add_order_tag": {
    "limits": [
      {
        "counter": "add_order_tag_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "get_customer": {
    "limits": [
      {
        "counter": "get_customer_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Keycrm — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON KEYCRM →

Instant setup, no code required.

All 46 Keycrm tools

WRITE 23 tools
Write add_order_tag Attach a tag to an existing order. Write adjust_stock Set the absolute stock quantity for a SKU in a specific warehouse. Write archive_product Archive a product. Reversible — archived products can be unarchived at any time. Write attach_external_transaction Attach an external transaction to an existing payment record in keyCRM. Write bulk_update_products Apply a field update to multiple products matching a filter. Call with dry_run:true first to preview, then dry Write create_category Create a new product category. Write create_customer Create a new customer (buyer) record in keyCRM. Write create_offer Create one or more new variants for an existing product. Write create_order Create a new order in keyCRM. Requires confirm: true. Write create_pipeline_card Create a new card in a pipeline. Write create_product Create a new product in the keyCRM catalogue. Write import_customers Bulk import a list of customer records into keyCRM. Requires confirm: true. Write publish_product Change a product Write remove_order_tag Remove a tag from an existing order. Write unpublish_product Change a product Write update_customer Update an existing customer record. Write update_offer Update fields on one or more existing product variants. Write update_order Update fields on an existing order. Write update_order_status Update the status of an order. Write update_pipeline_card Update an existing pipeline card (move stage, update contact, add notes, etc.). Write update_product Update one or more fields on an existing product. Write update_product_photo Replace or add a photo on an existing product from a public URL. Write upload_file Upload a file to keyCRM Storage from a publicly accessible URL. Returns a file_id.
READ 22 tools
Read get_customer Get a customer profile including full order history. Read get_order Get full details for a single order including line items, customer, payments, and status history. Read get_pipeline_card Get full details for a single pipeline card. Read get_product Get full details for a single product including all variants and stock levels. Read get_stock Get stock levels for a specific SKU across all warehouses, or for a single warehouse. Read list_categories List all product categories. Read list_custom_fields List all custom fields configured in keyCRM with their IDs, names, types, and allowed values. Read list_customers List customers with optional search. Read list_delivery_services List all available delivery services with their IDs and names. Read list_external_transactions List external payment transactions recorded in keyCRM. Read list_files List files stored in keyCRM Storage, optionally filtered by attached entity. Read list_offers List product variants (offers) with optional filters. Read list_order_statuses List all available order statuses with their IDs and names. Read list_orders List orders with optional filters. Read list_payment_methods List all available payment methods with their IDs and names. Read list_pipeline_cards List pipeline cards with optional filters. Read list_pipeline_statuses List all stages for a specific pipeline with their IDs and names. Read list_pipelines List all pipelines with their IDs and names. Read list_products List products from the keyCRM catalogue with optional filters. Read list_sources List all available order sources (e.g. WooCommerce, POS, Telegram) with their IDs and names. Read list_tags List all available order tags with their IDs and names. Read list_warehouses List all warehouses configured in keyCRM with their IDs, names, and addresses.

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about Keycrm

Can an AI agent move money through the Keycrm MCP server? +

Yes. The Keycrm server exposes 1 financial tools including add_order_payment. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. PolicyLayer lets you block financial tools by default, require human approval, or set per-tool rate limits — enforced on every call.

How do I prevent bulk modifications through Keycrm? +

The Keycrm server has 23 write tools including add_order_tag, adjust_stock, archive_product. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Keycrm.

How many tools does the Keycrm MCP server expose? +

46 tools across 3 categories: Destructive, Read, Write. 22 are read-only. 24 can modify, create, or delete data.

How do I enforce a policy on Keycrm? +

Register the Keycrm MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Keycrm tool call.

Deterministic rules across all 46 Keycrm tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

46 Keycrm tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.