// SCAN REPORT

Starknet MCP Server

25 tools. 6 can modify or destroy data without limits.

3 destructive tools with no built-in limits. Policy required.

Last updated:

6 can modify or destroy data
19 read-only
25 tools total
// TOOL MAP
Read (19) Write / Execute (3) Destructive / Financial (3)
// WHAT CAN GO WRONG

Financial operations (transfer_starknet_eth, transfer_starknet_strk, transfer_starknet_token) can move real money. An agent caught in a loop could drain accounts before anyone notices.

Write operations (resolve_starknet_address, resolve_starknet_name) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

Execute tools (execute_starknet_contract) trigger processes with side effects. Builds, notifications, workflows — all fired without throttling.

One command. Full control.

Intercept sits between your agent and Starknet MCP Server. Every tool call checked against your policy before it executes — so your agent can do its job without breaking things.

npx -y @policylayer/intercept scan -- npx -y @mcpdotdirect/starknet-mcp-server
Scans every tool. Generates a policy. Starts enforcing.
Works with Claude Code · Cursor · Claude Desktop · Windsurf · any MCP client
// RECOMMENDED RULES
Block financial tools by default
transfer_starknet_eth:
  rules:
    - action: deny

Financial tools should be explicitly enabled per use case, not open by default.

Rate limit write operations
resolve_starknet_address:
  rules:
    - rate_limit: 30/hour

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
call_starknet_contract:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 25 STARKNET MCP SERVER TOOLS
FINANCIAL 3 tools
Financial transfer_starknet_eth Financial transfer_starknet_strk Financial transfer_starknet_token
EXECUTE 1 tools
Execute execute_starknet_contract
WRITE 2 tools
Write resolve_starknet_address Write resolve_starknet_name
READ 19 tools
Read call_starknet_contract Read check_starknet_nft_ownership Read check_starknet_transaction_status Read get_starknet_block Read get_starknet_block_transactions Read get_starknet_chain_info Read get_starknet_contract_class Read get_starknet_eth_balance Read get_starknet_native_balances Read get_starknet_nft_balance Read get_starknet_profile Read get_starknet_strk_balance Read get_starknet_token_balance Read get_starknet_token_info Read get_starknet_token_supply Read get_starknet_transaction Read get_starknet_transaction_receipt Read get_supported_starknet_networks Read validate_starknet_domain
// FAQ
Can an AI agent move money through the Starknet MCP Server MCP server? +

Yes. The Starknet MCP Server server exposes 3 financial tools including transfer_starknet_eth, transfer_starknet_strk, transfer_starknet_token. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. Intercept lets you block financial tools by default or set per-tool rate limits.

How do I prevent bulk modifications through Starknet MCP Server? +

The Starknet MCP Server server has 2 write tools including resolve_starknet_address, resolve_starknet_name. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.

How many tools does the Starknet MCP Server MCP server expose? +

25 tools across 4 categories: Execute, Financial, Read, Write. 19 are read-only. 6 can modify, create, or delete data.

How do I add Intercept to my Starknet MCP Server setup? +

One line change. Instead of running the Starknet MCP Server server directly, prefix it with Intercept: intercept -c mcpdotdirect-starknet-mcp-server.yaml -- npx -y @mcpdotdirect/starknet-mcp-server. Download a pre-built policy from policylayer.com/policies/mcpdotdirect-starknet-mcp-server and adjust the limits to match your use case.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies available for each. Same risk classification, same one-command setup.

Aibtc 288 tools
paymentsautomation
Xdevplatform/xmcp 135 tools
paymentsautomation
Hiveagent 122 tools
paymentsautomation
Srv D7aoqmh5pdvs7391dcqg 70 tools
paymentsautomation
Indigo Protocol MCP 62 tools
paymentsautomation
MERX - TRON Resource Exchange 54 tools
paymentsautomation
Sui 53 tools
paymentsautomation
Clareo 45 tools
paymentsautomation
policylayer/intercept

Control every MCP tool call
your agent makes.

Set budgets, approvals, and hard limits across MCP servers.

npx -y @policylayer/intercept init
Protect your agent in 30 seconds. Scans your MCP config and generates enforcement policies for every server.
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.