OPanel MCP

47 tools. 31 can modify or destroy data without limits.

9 destructive tools with no built-in limits. Policy required.

Last updated:

31 can modify or destroy data
16 read-only
47 tools total

Community server · catalogue entry verified 30/06/2026

How to control OPanel MCP ↓

What OPanel MCP exposes to your agents

Read (16) Write / Execute (22) Destructive / Financial (9)
Critical Risk

The most dangerous OPanel MCP tools

31 of OPanel MCP's 47 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control OPanel MCP

PolicyLayer is an MCP gateway — it sits between your AI agents and OPanel MCP, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "ban_ip": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "add_to_whitelist": {
    "limits": [
      {
        "counter": "add_to_whitelist_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "get_banned_ips": {
    "limits": [
      {
        "counter": "get_banned_ips_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register OPanel MCP — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON OPANEL →

Instant setup, no code required.

All 47 OPanel MCP tools

READ 16 tools
Read get_banned_ips Get the list of banned IP addresses on the Minecraft server. Read get_bukkit_server_config Get the configuration file content of the Minecraft server. Note that this tool is only available for Bukkit/S Read get_code_of_conducts Get the list of code of conducts currently available on the Minecraft server. Read get_gamerules Get the current gamerules of the Minecraft server. Read get_info Get basic info of the Minecraft server that OPanel is running on, such as motd, port, in-game time or server s Read get_latest_log_content Get the content of the latest log file on the Minecraft server. Read get_log_content Get the content of a log file on the Minecraft server. Read get_log_file_names Get the list of file names of the logs currently available on the Minecraft server. Read get_players Get the list of players currently on the Minecraft server, as well as the maximum player count and whether the Read get_saves Get the list of saves on the Minecraft server. Read get_scheduled_tasks Get the list of scheduled tasks currently registered on OPanel. Read get_server_commands Get the list of commands currently registered on the Minecraft server. Read get_server_plugins Get the list of plugins/mods currently installed on the Minecraft server, as well as the path to the plugins/m Read get_server_properties Get the content of the server.properties file of the Minecraft server. Read get_whitelist Get the whitelist of the Minecraft server. Read toggle_whitelist Enable or disable the whitelist of the Minecraft server.

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about OPanel MCP

Can an AI agent delete data through the OPanel MCP server? +

Yes. The OPanel MCP server exposes 9 destructive tools including ban_ip, ban_player, clear_log_files. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through OPanel MCP? +

The OPanel MCP server has 15 write tools including add_to_whitelist, change_code_of_conduct_content, create_scheduled_task. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach OPanel MCP.

How many tools does the OPanel MCP server expose? +

47 tools across 4 categories: Destructive, Execute, Read, Write. 16 are read-only. 31 can modify, create, or delete data.

How do I enforce a policy on OPanel MCP? +

Register the OPanel MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every OPanel MCP tool call.

Deterministic rules across all 47 OPanel MCP tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

47 OPanel MCP tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.