WooCommerce MCP Server

91 tools. 45 can modify or destroy data without limits.

15 destructive tools with no built-in limits. Policy required.

Last updated:

45 can modify or destroy data
46 read-only
91 tools total

Community server · catalogue entry verified 02/07/2026

How to control WooCommerce MCP Server ↓

What WooCommerce MCP Server exposes to your agents

Read (46) Write / Execute (30) Destructive / Financial (15)
Critical Risk

The most dangerous WooCommerce MCP Server tools

45 of WooCommerce MCP Server's 91 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control WooCommerce MCP Server

PolicyLayer is an MCP gateway — it sits between your AI agents and WooCommerce MCP Server, and nothing reaches the server without passing your rules. These are the rules we recommend:

Block financial tools by default
{
  "create_order_refund": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Requires human approval."
      }
    ]
  }
}

Financial tools should be explicitly enabled per use case, not open by default.

Deny destructive operations
{
  "delete_coupon": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "create_coupon": {
    "limits": [
      {
        "counter": "create_coupon_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "get_categories_report": {
    "limits": [
      {
        "counter": "get_categories_report_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register WooCommerce MCP Server — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON WOOCOMMERCE →

Instant setup, no code required.

All 91 WooCommerce MCP Server tools

WRITE 29 tools
Write create_coupon Create a new coupon in WooCommerce Write create_customer Create a new customer in WooCommerce Write create_customer_meta Create or update meta data for a customer Write create_order Create a new order in WooCommerce Write create_order_meta Create or update meta data for an order Write create_order_note Create a new order note Write create_post Create a new WordPress post Write create_product Create a new product in WooCommerce Write create_product_attribute Create a new product attribute in WooCommerce Write create_product_category Create a new product category in WooCommerce Write create_product_meta Create or update meta data for a product Write create_product_review Create a new product review Write create_product_tag Create a new product tag in WooCommerce Write create_product_variation Create a new product variation Write update_coupon Update an existing coupon Write update_customer Update an existing customer in WooCommerce Write update_customer_meta Update existing meta data for a customer Write update_order Update an existing order in WooCommerce Write update_order_meta Update existing meta data for an order Write update_payment_gateway Update payment gateway settings Write update_post Update an existing WordPress post Write update_product Update an existing product in WooCommerce Write update_product_attribute Update an existing product attribute Write update_product_category Update an existing product category Write update_product_meta Update existing meta data for a product Write update_product_review Update an existing product review Write update_product_tag Update an existing product tag Write update_product_variation Update an existing product variation Write update_setting_option Update a specific setting option
READ 46 tools
Read get_categories_report Retrieve categories report data from WooCommerce Read get_continents Retrieve list of continents and their countries Read get_countries Retrieve list of countries Read get_coupon Retrieve a specific coupon by ID Read get_coupons Retrieve coupons from WooCommerce Read get_coupons_report Retrieve coupons report data from WooCommerce Read get_currencies Retrieve list of available currencies Read get_current_currency Retrieve current currency information Read get_customer Retrieve a specific customer by ID from WooCommerce Read get_customer_meta Retrieve meta data for a specific customer Read get_customers Retrieve a list of customers from WooCommerce Read get_customers_report Retrieve customers report data from WooCommerce Read get_data Retrieve general WooCommerce data information Read get_order Retrieve a specific order by ID from WooCommerce Read get_order_meta Retrieve meta data for a specific order Read get_order_note Retrieve a specific order note Read get_order_notes Retrieve notes for a specific order Read get_order_refund Retrieve a specific order refund Read get_order_refunds Retrieve refunds for a specific order Read get_orders Retrieve a list of orders from WooCommerce Read get_orders_report Retrieve orders report data from WooCommerce Read get_payment_gateway Retrieve a specific payment gateway by ID Read get_payment_gateways Retrieve payment gateways from WooCommerce Read get_post_meta Retrieve meta data for a WordPress post Read get_posts Retrieve WordPress posts Read get_product Retrieve a specific product by ID from WooCommerce Read get_product_attribute Retrieve a specific product attribute by ID Read get_product_attributes Retrieve product attributes from WooCommerce Read get_product_categories Retrieve product categories from WooCommerce Read get_product_category Retrieve a specific product category by ID Read get_product_meta Retrieve meta data for a specific product Read get_product_review Retrieve a specific product review by ID Read get_product_reviews Retrieve product reviews from WooCommerce Read get_product_tag Retrieve a specific product tag by ID Read get_product_tags Retrieve product tags from WooCommerce Read get_product_variation Retrieve a specific product variation Read get_product_variations Retrieve variations for a variable product Read get_products Retrieve a list of products from WooCommerce Read get_products_report Retrieve products report data from WooCommerce Read get_sales_report Retrieve sales report data from WooCommerce Read get_setting_options Retrieve options for a specific settings group Read get_settings Retrieve WooCommerce settings groups Read get_stock_report Retrieve stock report data from WooCommerce Read get_system_status Retrieve WooCommerce system status information Read get_system_status_tools Retrieve available system status tools Read get_taxes_report Retrieve taxes report data from WooCommerce

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about WooCommerce MCP Server

Can an AI agent move money through the WooCommerce MCP Server MCP server? +

Yes. The WooCommerce MCP Server server exposes 2 financial tools including create_order_refund, delete_order_refund. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. PolicyLayer lets you block financial tools by default, require human approval, or set per-tool rate limits — enforced on every call.

Can an AI agent delete data through the WooCommerce MCP Server MCP server? +

Yes. The WooCommerce MCP Server server exposes 13 destructive tools including delete_coupon, delete_customer, delete_customer_meta. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through WooCommerce MCP Server? +

The WooCommerce MCP Server server has 29 write tools including create_coupon, create_customer, create_customer_meta. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach WooCommerce MCP Server.

How many tools does the WooCommerce MCP Server MCP server expose? +

91 tools across 5 categories: Destructive, Execute, Financial, Read, Write. 46 are read-only. 45 can modify, create, or delete data.

How do I enforce a policy on WooCommerce MCP Server? +

Register the WooCommerce MCP Server MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every WooCommerce MCP Server tool call.

Deterministic rules across all 91 WooCommerce MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

91 WooCommerce MCP Server tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.