// SCAN REPORT

ScholarMCP

10 tools. 1 can modify or destroy data without limits.

1 write tool that can modify data. Rate limits recommended.

Last updated:

1 can modify or destroy data
9 read-only
10 tools total

Community server · catalogue entry verified 11/06/2026

How to control ScholarMCP ↓

TOOL MAP

What ScholarMCP exposes to your agents

Read (9) Write / Execute (1) Destructive / Financial (0)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
High Risk

The most dangerous ScholarMCP tools

Write · Medium ingest_paper_fulltext This tool fetches a PDF and writes/stores a parsed structured document into the system.

1 of ScholarMCP's 10 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control ScholarMCP

PolicyLayer is an MCP gateway — it sits between your AI agents and ScholarMCP, and nothing reaches the server without passing your rules. These are the rules we recommend:

Rate limit write operations
{
  "ingest_paper_fulltext": {
    "limits": [
      {
        "counter": "ingest_paper_fulltext_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "build_reference_list": {
    "limits": [
      {
        "counter": "build_reference_list_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register ScholarMCP — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON SCHOLARMCP →

Free to start. No card required.

FULL CATALOGUE

All 10 ScholarMCP tools

WRITE 1 tools
Write ingest_paper_fulltext Resolve and ingest a full-text PDF from DOI/URL/local file, then parse into a structured document using GROBID
READ 9 tools
Read build_reference_list Generate CSL-formatted bibliography and BibTeX entries from manuscript context or explicit works. Read extract_granular_paper_details Extract claims, methods, limitations, datasets, metrics, and section-aware summaries from a parsed document. Read get_author_info Retrieve a Google Scholar author profile and top publications by author name. Read get_ingestion_status Get the status of a previously started ingest_paper_fulltext job. Read search_google_scholar_advanced Search Google Scholar using keyword, author, year-range, phrase, and exclusion filters. Read search_google_scholar_key_words Search Google Scholar using keywords and return paper metadata. Read search_literature_graph Search multiple scholarly metadata providers (OpenAlex, Crossref, Semantic Scholar, optional Scholar scrape) a Read suggest_contextual_citations Recommend citations from the federated literature graph based on manuscript context. Read validate_manuscript_citations Validate inline citations against reference entries and detect missing or uncited references.
EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Sperax Ecosystem Crypto & DeFI MCP Server 1318 tools
automation
Mcp Afip 1300 tools
automation
Mcp Ap2 1300 tools
automation
BNB Chain MCP 1240 tools
automation
Nodebench 824 tools
automation
Amazon Bedrock Knowledge Base Retrieval MCP Server 805 tools
automation
Amazon Data Processing MCP Server 805 tools
automation
Amazon ECS MCP Server 805 tools
automation
FAQ

Questions about ScholarMCP

How do I prevent bulk modifications through ScholarMCP? +

The ScholarMCP server has 1 write tools including ingest_paper_fulltext. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach ScholarMCP.

How many tools does the Scholar MCP server expose? +

10 tools across 2 categories: Execute, Read. 9 are read-only. 1 can modify, create, or delete data.

How do I enforce a policy on ScholarMCP? +

Register the Scholar MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every ScholarMCP tool call.

Deterministic rules across all 10 ScholarMCP tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON SCHOLARMCP →

Free to start. No card required.

10 ScholarMCP tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.