// SCAN REPORT

PDF Tools

36 tools. 15 can modify or destroy data without limits.

15 write tools that can modify data. Rate limits recommended.

Last updated:

15 can modify or destroy data
21 read-only
36 tools total

Community server · catalogue entry verified 11/06/2026

How to control PDF Tools ↓

TOOL MAP

Read (21) Write / Execute (15) Destructive / Financial (0)

MOST DANGEROUS TOOLS

High Risk
Execute · Low reveal_in_finder This tool triggers an external OS-level operation (launching/focusing the file manager application) rather than simply reading or writing data. Write · Medium bulk_fill_from_csv This tool creates or modifies PDF content by injecting data from CSV sources into multiple documents. Write · Medium add_signature_field This tool creates or adds new signature fields to PDFs, which is a reversible modification of document structure. Write · Medium apply_page_plan This tool modifies PDF structure reversibly by creating a new file.

15 of PDF Tools's 36 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

HOW TO CONTROL PDF TOOLS

PolicyLayer is an MCP gateway — it sits between your AI agents and PDF Tools, and nothing reaches the server without passing your rules. These are the rules we recommend:

Rate limit write operations
{
  "reorder_pdf_pages": {
    "limits": [
      {
        "counter": "reorder_pdf_pages_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "detect_signature_zones": {
    "limits": [
      {
        "counter": "detect_signature_zones_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register PDF Tools — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON PDF TOOLS →

Free to start. No card required.

ALL 36 PDF TOOLS TOOLS

EXECUTE 1 tools
Execute reveal_in_finder Open the OS file manager with the given file selected (macOS: Finder → Reveal; Windows: Explorer → select; Lin
WRITE 14 tools
Write reorder_pdf_pages Rearrange the pages of a PDF in a new order. All pages must be included exactly once (strict permutation). All Write rotate_pdf_pages Rotate pages in a PDF by 90, 180, or 270 degrees. All paths must be absolute paths on the user Write split_pdf Split a PDF into multiple files by page ranges (e.g. Write add_signature_field Draw a visible Write apply_page_plan Apply a page plan to a PDF: reorder, rotate, and delete pages in one pass. Pages not listed in page_order are Write apply_text Stamp a plain text string at a location on a PDF, saving the result as a new file. Use this for date zones (st Write bulk_fill_from_csv Fill multiple PDFs using data from a CSV file Write create_signature Save a reusable signature the user can apply to PDFs. Two styles: Write fill_pdf Fill a PDF form with provided data and save it. output_path may be the same as pdf_path for in-place editing; Write fill_with_profile Fill a PDF using a saved profile Write merge_pdfs Merge multiple PDF files into a single PDF. All paths must be absolute paths on the user Write prepare_signing_packet One-shot workflow: fill form fields AND add Write save_profile Save form data as a reusable profile Write set_active_document Set or rehydrate the toolkit
READ 21 tools
Read detect_signature_zones Find every place in a PDF where a signature, initials, or date should go. Returns a typed list of zones with c Read display_pdf Open the interactive PDF viewer with page navigation, zoom, in-document search, text selection, form-field sid Read extract_to_csv Extract form data from filled PDFs to a CSV file Read fetch_pdf_from_url Download a PDF from any URL — the PREFERRED way to grab any PDF from a URL for the user. Always use this for P Read get_active_document Return the toolkit Read get_page_analysis Analyze a PDF and return per-page metadata: text length, text snippet, image presence, dimensions, and orienta Read get_pdf_info Get metadata about a PDF file: page count, file size, page dimensions, form field count, and whether it is enc Read get_pdf_resource_uri Return the PDF Read list_pdfs List all PDF files in a directory. This tool operates on the user Read list_profiles List all saved profiles Read list_signatures List all saved signatures in ~/.pdf-toolkit-files/signatures/. Returns each signature Read load_profile Load a saved profile Read load_signature Load one saved signature by name. Returns the style, display name, and for image signatures a preview data URL Read read_pdf_bytes Read PDF file bytes in chunks (for UI rendering) Read read_pdf_content Read PDF text for broad understanding of the document. Best for full-document summarization, question answerin Read read_pdf_fields Read all form fields from a PDF file and display them in an interactive viewer. Returns field names, types, an Read read_pdf_pages Read a specific page range from a PDF with page-numbered structured output. Use this when the model should ins Read render_pdf_page Render one PDF page to a PNG image for visual reasoning. Use this when text extraction is weak, the PDF is sca Read render_pdf_region Render a rectangular region from one PDF page to a PNG image using the toolkit Read search_pdf_text Search extracted PDF text for a literal phrase and return page-numbered snippets. Use this when you need to fi Read validate_pdf Validate a fillable PDF and report whether required fields are complete. Use this before submission or signing

FAQ

How do I prevent bulk modifications through PDF Tools? +

The PDF Tools server has 14 write tools including reorder_pdf_pages, rotate_pdf_pages, split_pdf. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach PDF Tools.

How many tools does the PDF Tools MCP server expose? +

36 tools across 2 categories: Read, Write. 21 are read-only. 15 can modify, create, or delete data.

How do I enforce a policy on PDF Tools? +

Register the PDF Tools MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every PDF Tools tool call.

Deterministic rules across all 36 PDF Tools tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON PDF TOOLS →

Free to start. No card required.

36 PDF Tools tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.