Tick

71 tools. 35 can modify or destroy data without limits.

7 destructive tools with no built-in limits. Policy required.

Last updated:

35 can modify or destroy data
36 read-only
71 tools total

Community server · catalogue entry verified 03/07/2026

How to control Tick ↓

What Tick exposes to your agents

Read (36) Write / Execute (27) Destructive / Financial (7)
Critical Risk

The most dangerous Tick tools

35 of Tick's 71 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control Tick

PolicyLayer is an MCP gateway — it sits between your AI agents and Tick, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "batch_delete_tasks": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "batch_create_tasks": {
    "limits": [
      {
        "counter": "batch_create_tasks_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "check_v2_availability": {
    "limits": [
      {
        "counter": "check_v2_availability_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Tick — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON TICK →

Instant setup, no code required.

All 71 Tick tools

READ 36 tools
Read check_v2_availability Check whether V2 API features are available (session token configured). Read events_of_today Return timed scheduled items for a given local day. Read full_sync full_sync Read get_all_tasks Get ALL active tasks across all projects in one call via V2 sync. Read get_completed_tasks get_completed_tasks Read get_deleted_tasks Get deleted tasks from the trash. Read get_focus_stats get_focus_stats Read get_habit_records get_habit_records Read get_inbox Return tasks from the TickTick Inbox. Read get_productivity_stats get_productivity_stats Read get_project_detail Get full details of a single project. Read get_project_tasks get_project_tasks Read get_task_detail get_task_detail Read get_user_status Get account status — inbox ID, Pro subscription, team membership. Read list_columns List kanban columns for a project. Read list_habit_sections List habit sections (e.g., Morning, Afternoon, Evening). Read list_habits list_habits Read list_project_folders List all project folders (groups). Read list_projects list_projects Read list_query_presets List saved reusable query presets. Read list_tags List all tags. Read overdue_tasks Return active tasks whose due date is already in the past. Read priority_dashboard Summarize active tasks by priority with top items per bucket. Read query_agenda Query scheduled items inside a date/time window. Read query_folders Search/filter project folders with optional project counts. Read query_notes Query notes with folder/project scope and grep-like content search. Read query_projects Search/filter projects with folder-aware metadata. Read query_task_history Query completed, abandoned, or deleted task history with the same fine filters. Read query_tasks Query active tasks with fine-grained filters, date/hour ranges, and grep-like matching. Read stale_tasks Return active tasks that have not been modified recently. Read tasks_of_today Return active tasks scheduled for a given local day. Read ticktick_guide ticktick_guide Read upcoming_tasks Return active tasks due within a local upcoming window. Read week_agenda Return scheduled items for a local multi-day window (default: 7 days). Read week_overview Return a planning-oriented overview split into events, due tasks, and overdue tasks. Read workspace_map Return a navigable map of folders and projects, optionally with active task counts.

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about Tick

Can an AI agent delete data through the Tick MCP server? +

Yes. The Tick server exposes 7 destructive tools including batch_delete_tasks, delete_habit, delete_project. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through Tick? +

The Tick server has 25 write tools including batch_create_tasks, batch_update_tasks, complete_task. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Tick.

How many tools does the Tick MCP server expose? +

71 tools across 4 categories: Destructive, Execute, Read, Write. 36 are read-only. 35 can modify, create, or delete data.

How do I enforce a policy on Tick? +

Register the Tick MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Tick tool call.

Deterministic rules across all 71 Tick tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

71 Tick tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.