10 tools. 4 can modify or destroy data without limits.
4 write tools that can modify data. Rate limits recommended.
Last updated:
Write operations (add_merge_request_comment, add_merge_request_diff_comment, set_merge_request_description) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.
add_merge_request_comment:
rules:
- rate_limit: 30/hour Prevents bulk unintended modifications from agents caught in loops.
get_issue_details:
rules:
- rate_limit: 60/minute Controls API costs and prevents retry loops from exhausting upstream rate limits.
The GitLab Merge Request Integration server has 4 write tools including add_merge_request_comment, add_merge_request_diff_comment, set_merge_request_description. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.
10 tools across 2 categories: Read, Write. 6 are read-only. 4 can modify, create, or delete data.
One line change. Instead of running the GitLab Merge Request Integration server directly, prefix it with Intercept: intercept -c kopfrechner-gitlab-mr-mcp.yaml -- npx -y @kopfrechner/gitlab-mr-mcp. Download a pre-built policy from policylayer.com/policies/kopfrechner-gitlab-mr-mcp and adjust the limits to match your use case.
Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.