// SCAN REPORT

ThinkPLC-MCP

23 tools. 9 can modify or destroy data without limits.

9 write tools that can modify data. Rate limits recommended.

Last updated:

9 can modify or destroy data
14 read-only
23 tools total

Community server · catalogue entry verified 12/06/2026

How to control ThinkPLC-MCP ↓

TOOL MAP

What ThinkPLC-MCP exposes to your agents

Read (14) Write / Execute (9) Destructive / Financial (0)

Running more than one server? Check your whole stack →

MOST DANGEROUS TOOLS
High Risk

The most dangerous ThinkPLC-MCP tools

Execute · Low Api-Logout Api-Logout terminates an active session by invalidating an authentication token. Execute · Critical Plc-RequestChangeOperatingMode Changing the operating mode of an industrial PLC is an Execute-category action with critical severity. Write · High Api-ChangePassword This tool creates or modifies data (user account password) reversibly. Write · Medium Api-Login Api.Login creates a new authenticated session (a stateful resource on the server), which is a Write operation.

9 of ThinkPLC-MCP's 23 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

POLICY

How to control ThinkPLC-MCP

PolicyLayer is an MCP gateway — it sits between your AI agents and ThinkPLC-MCP, and nothing reaches the server without passing your rules. These are the rules we recommend:

Rate limit write operations
{
  "Alarms-Acknowledge": {
    "limits": [
      {
        "counter": "alarms-acknowledge_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "Api-Ping": {
    "limits": [
      {
        "counter": "api-ping_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register ThinkPLC-MCP — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON THINKPLC-MCP →

Free to start. No card required.

FULL CATALOGUE

All 23 ThinkPLC-MCP tools

EXECUTE 2 tools
Execute Api-Logout The Api.Logout method removes the token from the list of active Web API sessions and ends the session. The Api Execute Plc-RequestChangeOperatingMode With the Plc.RequestChangeOperatingMode method, you request a new operating mode forthe CPU. Note that this is
WRITE 7 tools
Write Alarms-Acknowledge Use this method to acknowledge individual alarms. To call the Alarms.Acknowledge method, you need the Write Api-ChangePassword You can change the password for a user account with the Api.ChangePassword method. Recommendation: Before chan Write Api-Login The Api.Login method checks the login data of the user and on successful verification opens a new Web API ses Write Plc-SetSystemTime Use this API method to set the system time of the CPU (PLC local time). To call the Plc.SetSystemTime method, Write PlcProgram-Write-Boolean Use the PlcProgram.Write method to write a single process tag to the CPU. To call the PlcProgram.Write method, Write PlcProgram-Write-Number Use the PlcProgram.Write method to write a single process tag to the CPU. To call the PlcProgram.Write method, Write PlcProgram-Write-String Use the PlcProgram.Write method to write a single process tag to the CPU. To call the PlcProgram.Write method,
READ 14 tools
Read Api-Ping The Api.Ping method outputs a unique ID for the CPU used. You can use it to determine whether the CPU can be r Read Alarms-Browse With this method you can determine which alarms are currently active on the CPU, and when the last change occu Read Api-Browse The Api.Browse method gives you a list of all methods that you can call via the Web API with the current firmw Read Api-GetPasswordPolicy Passwords must fulfill specific criteria to be secure. The Api.GetPasswordPolicy method provides you with the Read Api-GetPermissions After the successful login, the Api.GetPermissions returns a list of actions for whose execution the user is a Read Api-GetQuantityStructures The Api.GetQuantityStructures method returns different structure information of the Web server. Read Api-Version Use the Api.Version method to request the current version number of the Web API. You can draw conclusions from Read DiagnosticBuffer-Browse With this method you read out entries from the diagnostics buffer of the CPU. To call the DiagnosticBuffer.Bro Read Plc-ReadOperatingMode With the Plc.ReadOperatingMode method you can read the operating mode of the CPU. To call the Plc.ReadOperatin Read Plc-ReadSystemTime This API method provides the system time of the CPU. If you have synchronized the system time of the CPU, for Read PlcProgram-Browse-Children The PlcProgram.Browse method allows you to search for tags and the corresponding metadata according to your in Read PlcProgram-Browse-Var The PlcProgram.Browse method allows you to search for tags and the corresponding metadata according to your in Read PlcProgram-Read Use the PlcProgram.Read method to read a single variable from a CPU. To call the PlcProgram.Read method, you n Read Project-ReadLanguages This API method returns a list with the project languages available on the CPU. You can then use the
EXPLORE

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Sperax Ecosystem Crypto & DeFI MCP Server 1318 tools
automation
Mcp Afip 1300 tools
automation
Mcp Ap2 1300 tools
automation
BNB Chain MCP 1240 tools
automation
Nodebench 824 tools
automation
Amazon Bedrock Knowledge Base Retrieval MCP Server 805 tools
automation
Amazon Data Processing MCP Server 805 tools
automation
Amazon ECS MCP Server 805 tools
automation
FAQ

Questions about ThinkPLC-MCP

How do I prevent bulk modifications through ThinkPLC-MCP? +

The ThinkPLC-MCP server has 7 write tools including Alarms-Acknowledge, Api-ChangePassword, Api-Login. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach ThinkPLC-MCP.

How many tools does the ThinkPLC- MCP server expose? +

23 tools across 3 categories: Execute, Read, Write. 14 are read-only. 9 can modify, create, or delete data.

How do I enforce a policy on ThinkPLC-MCP? +

Register the ThinkPLC- MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every ThinkPLC-MCP tool call.

Deterministic rules across all 23 ThinkPLC-MCP tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON THINKPLC-MCP →

Free to start. No card required.

23 ThinkPLC-MCP tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.