// SCAN REPORT

Personal Knowledge MCP Server

29 tools. 12 can modify or destroy data without limits.

2 destructive tools with no built-in limits. Policy required.

Last updated:

12 can modify or destroy data
17 read-only
29 tools total

Community server · catalogue entry verified 11/06/2026

How to control Personal Knowledge MCP Server ↓

TOOL MAP

What Personal Knowledge MCP Server exposes to your agents

Read (17) Write / Execute (10) Destructive / Financial (2)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
Critical Risk

The most dangerous Personal Knowledge MCP Server tools

Destructive · High delete_bitable_field Deleting a field/column from a database table is a destructive operation that cannot be easily undone and results in permanent loss of data associated with that field across all records. Destructive · High delete_bitable_records This tool permanently deletes records from a data store (Feishu Bitable/multidimensional tables). Execute · Medium sync_local_documents This tool triggers an active operation — a full re-indexing of local documents. Write · Medium batch_update_bitable_records This tool modifies existing records in a Feishu bitable (multi-dimensional table) without deleting them.

12 of Personal Knowledge MCP Server's 29 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control Personal Knowledge MCP Server

PolicyLayer is an MCP gateway — it sits between your AI agents and Personal Knowledge MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "delete_bitable_field": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "append_sheet_data": {
    "limits": [
      {
        "counter": "append_sheet_data_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "find_similar_pages": {
    "limits": [
      {
        "counter": "find_similar_pages_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Personal Knowledge MCP Server — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON PERSONAL KNOWLEDGE →

Free to start. No card required.

FULL CATALOGUE

All 29 Personal Knowledge MCP Server tools

DESTRUCTIVE 2 tools
Destructive delete_bitable_field 删除飞书多维表格中的字段(列) Destructive delete_bitable_records 删除飞书多维表格记录(支持批量删除)
EXECUTE 1 tools
Execute sync_local_documents 手动触发本地文档同步(全量索引)
WRITE 9 tools
Write append_sheet_data 追加数据到飞书电子表格(在已有数据后追加新行) Write index_file 索引单个本地文件(增量索引,比全量 sync 快得多)。文件必须在 config.json 的 watch_paths 范围内。 Write batch_update_bitable_records 批量更新飞书多维表格记录 Write create_bitable_field 在飞书多维表格中创建新字段(列)。常用 type:1=文本, 3=单选, 5=日期, 15=URL Write create_bitable_records 创建飞书多维表格记录(支持批量创建) Write update_bitable_field 更新飞书多维表格字段(重命名、修改属性等) Write update_bitable_record 更新飞书多维表格中的单条记录 Write write_docx_content 向飞书云文档写入 Markdown 内容。将 Markdown 解析为飞书文档块(标题、列表、代码块、引用等),追加到文档末尾。适用于向已有文档批量写入结构化内容 Write write_sheet_data 写入飞书电子表格指定范围的数据(覆盖写入)
READ 17 tools
Read find_similar_pages 查找已有 concept/entity 页面的近似匹配,用于 Ingest 去重决策。返回 merge/review/distinct 建议。 Read get_bitable_records 获取飞书多维表格记录,支持筛选、字段选择、排序 Read get_document 获取完整的文档内容 Read get_docx_content 获取飞书云文档的纯文本内容 Read get_drive_file_content 获取飞书云盘中指定文件的内容 Read get_sheet_data 获取飞书电子表格数据。支持读取指定工作表和范围的数据。 Read get_stats 获取知识库统计信息(各来源的文档数量) Read get_wiki_node_content 获取飞书知识库中指定文档的内容。只需 node_token(从 wiki URL 中 /wiki/ 后的部分),无需 space_id。返回值包含 space_id 和 has_child,可直接用于后续调用 get_w Read get_wiki_nodes 获取飞书知识空间的节点列表(文档目录)。支持 recursive 参数递归获取所有子节点。注意:需要 space_id(数字格式,如 7561364012530434051),不是 node_token Read lint_duplicates 检测知识库中近似重复的文档(基于文档级 embedding 余弦相似度 + 标题 bigram Jaccard)。用于 wiki concepts/entities 去重。 Read list_bitable_fields 列出飞书多维表格的所有字段(列)定义,返回字段 ID、名称、类型等信息 Read list_bitable_tables 列出飞书多维表格中的所有数据表 Read list_documents 列出所有文档(按最近同步时间排序) Read list_drive_files 列出飞书云盘文件夹中的文件。需要先将文件夹共享给应用,然后传入该文件夹的 token Read list_sheets 列出飞书电子表格中的所有工作表 Read list_wiki_spaces 列出当前应用可访问的所有飞书知识空间。用于发现可用的知识空间及其 space_id Read search_documents 搜索知识库中的文档。支持 BM25 + 向量混合召回;可选 cross-encoder rerank 提升精度。
EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Sperax Ecosystem Crypto & DeFI MCP Server 1318 tools
admin
Mcp Afip 1300 tools
admin
Mcp Ap2 1300 tools
admin
BNB Chain MCP 1240 tools
admin
Nodebench 824 tools
admin
Amazon Bedrock Knowledge Base Retrieval MCP Server 805 tools
admin
Amazon Data Processing MCP Server 805 tools
admin
Amazon ECS MCP Server 805 tools
admin
FAQ

Questions about Personal Knowledge MCP Server

Can an AI agent delete data through the Personal Knowledge MCP Server MCP server? +

Yes. The Personal Knowledge MCP Server server exposes 2 destructive tools including delete_bitable_field, delete_bitable_records. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through Personal Knowledge MCP Server? +

The Personal Knowledge MCP Server server has 9 write tools including append_sheet_data, index_file, batch_update_bitable_records. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach Personal Knowledge MCP Server.

How many tools does the Personal Knowledge MCP Server MCP server expose? +

29 tools across 3 categories: Destructive, Read, Write. 17 are read-only. 12 can modify, create, or delete data.

How do I enforce a policy on Personal Knowledge MCP Server? +

Register the Personal Knowledge MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Personal Knowledge MCP Server tool call.

Deterministic rules across all 29 Personal Knowledge MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON PERSONAL KNOWLEDGE →

Free to start. No card required.

29 Personal Knowledge MCP Server tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.