QR for Agent

37 tools. 30 can modify or destroy data without limits.

5 destructive tools with no built-in limits. Policy required.

Last updated:

30 can modify or destroy data
7 read-only
37 tools total

Verified server · catalogue entry verified 30/06/2026 · full schemas captured for 32 of 37 tools

How to control QR for Agent ↓

What QR for Agent exposes to your agents

Read (7) Write / Execute (25) Destructive / Financial (5)

What QR for Agent costs in tokens

9,483 tokens of tool definitions, loaded on every request
4.7% of a 200k context window
1,011 heaviest tool: create_qr_code
Critical Risk

The most dangerous QR for Agent tools

30 of QR for Agent's 37 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control QR for Agent

PolicyLayer is an MCP gateway — it sits between your AI agents and QR for Agent, and nothing reaches the server without passing your rules. These are the rules we recommend:

Block financial tools by default
{
  "manage_billing": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Requires human approval."
      }
    ]
  }
}

Financial tools should be explicitly enabled per use case, not open by default.

Deny destructive operations
{
  "bulk_delete_qr_codes": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "bulk_create_from_csv": {
    "limits": [
      {
        "counter": "bulk_create_from_csv_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "get_conversions": {
    "limits": [
      {
        "counter": "get_conversions_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register QR for Agent — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON QR FOR AGENT →

Instant setup, no code required.

All 37 QR for Agent tools

WRITE 25 tools
Write bulk_create_from_csv Create up to 500 QR codes from CSV data. Pro plan required. Send the CSV content as a string. Required column: Write bulk_create_qr_codes Create multiple QR codes in a single request (up to 50). Each item supports the same options as create_qr_code Write bulk_update_qr_codes Update multiple QR codes in a single request (up to 50). Change target URLs and/or labels. Items with non-exis Write create_app_store_qr Create a QR code that redirects to the correct app store based on the device. iPhones go to the App Store, And Write create_email_qr Create a QR code that opens a pre-filled email when scanned. The recipient, subject, body, CC, and BCC can all Write create_event_qr Create a QR code that adds a calendar event when scanned. Encodes a standard iCalendar VEVENT that calendar ap Write create_location_qr Create a QR code that opens a map location when scanned. Encodes geographic coordinates that map apps can pars Write create_phone_qr Create a QR code that initiates a phone call when scanned. The phone number is encoded directly in the QR code Write create_qr_code Create a new managed QR code with optional custom styling. The QR code points to a short URL that redirects to Write create_sms_qr Create a QR code that opens a pre-filled SMS message when scanned. Set the phone number and optional message t Write create_social_qr Create a QR code that links to social media profiles. When scanned via the short URL, returns a JSON object wi Write create_text_qr Create a QR code that contains plain text. When scanned, the text is displayed directly. Useful for messages, Write create_vcard_qr Create a QR code that encodes a contact card (vCard). When scanned by a phone camera, it prompts the user to s Write create_webhook Register a webhook endpoint to receive real-time notifications when QR codes are scanned. Returns an HMAC-SHA2 Write create_wifi_qr Create a QR code that encodes WiFi credentials. When scanned by a phone camera, it offers to auto-join the WiF Write record_conversion Record a post-scan conversion event (purchase, signup, etc.) for a QR code you own. Use this to track ROI — e. Write register Register for an API key. Provide your email to get a key immediately. Write set_custom_domain Set a custom domain for your QR code short URLs (Pro plan required). When set, all new QR codes will use https Write set_redirect_rules Set conditional redirect rules on a URL QR code. Rules are evaluated top-to-bottom; each rule has an array of Write set_utm_params Set UTM tracking parameters on a URL QR code. These parameters are automatically appended to the target URL on Write update_app_store_qr Update the app store URLs of an App Store QR code. Partial updates merge with existing data. Write update_qr_destination Change where an existing QR code redirects to. This is the key 'dynamic link' feature: the QR image stays the Write update_social_qr Update the social media links of a Social QR code. Partial updates merge with existing data. Write update_vcard_qr Update the contact details of a vCard QR code. Only works on QR codes created with type='vcard'. Partial updat Write update_wifi_qr Update the WiFi credentials of a WiFi QR code. Only works on QR codes created with type='wifi'. Note: updating

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about QR for Agent

Can an AI agent move money through the QR for Agent MCP server? +

Yes. The QR for Agent server exposes 2 financial tools including manage_billing, upgrade_to_pro. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. PolicyLayer lets you block financial tools by default, require human approval, or set per-tool rate limits — enforced on every call.

Can an AI agent delete data through the QR for Agent MCP server? +

Yes. The QR for Agent server exposes 3 destructive tools including bulk_delete_qr_codes, delete_qr_code, delete_webhook. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through QR for Agent? +

The QR for Agent server has 25 write tools including bulk_create_from_csv, bulk_create_qr_codes, bulk_update_qr_codes. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach QR for Agent.

How many tools does the QR for Agent MCP server expose? +

37 tools across 3 categories: Destructive, Read, Write. 7 are read-only. 30 can modify, create, or delete data.

How do I enforce a policy on QR for Agent? +

Register the QR for Agent MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every QR for Agent tool call.

Deterministic rules across all 37 QR for Agent tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

37 QR for Agent tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// WHERE THIS COMES FROM

These policies come from QR for Agent's registry record.

The record behind this page: verified identity, auth posture, risk grade, every tool classified, recommended policy — re-checked continuously.

Teams ship this data inside their own products. See what a licence covers →

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.