// SCAN REPORT

Srclight

42 tools. 2 can modify or destroy data without limits.

2 write tools that can modify data. Rate limits recommended.

Last updated:

2 can modify or destroy data
40 read-only
42 tools total

Community server · catalogue entry verified 11/06/2026

How to control Srclight ↓

TOOL MAP

Read (40) Write / Execute (2) Destructive / Financial (0)

MOST DANGEROUS TOOLS

High Risk
Execute · High reindex The tool performs a triggering action that initiates a computational process on the codebase. Execute · Medium restart_server This tool triggers restart of the srclight server itself—an external operation that causes the service to stop and restart.

2 of Srclight's 42 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

HOW TO CONTROL SRCLIGHT

PolicyLayer is an MCP gateway — it sits between your AI agents and Srclight, and nothing reaches the server without passing your rules. These are the rules we recommend:

Cap read operations
{
  "blame_symbol": {
    "limits": [
      {
        "counter": "blame_symbol_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register Srclight — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON SRCLIGHT →

Free to start. No card required.

ALL 42 SRCLIGHT TOOLS

EXECUTE 2 tools
Execute reindex Trigger re-indexing of the codebase or a specific path. Execute restart_server Request the server to exit so a process manager can restart it (SSE only).
READ 40 tools
Read blame_symbol blame_symbol Read changes_to changes_to Read codebase_map codebase_map Read conversation_summary conversation_summary Read detect_changes detect_changes Read embedding_health embedding_health Read embedding_status Check embedding coverage and model info. Read find_dead_code find_dead_code Read find_imports find_imports Read find_pattern find_pattern Read get_build_targets Get all build targets (libraries, executables) from the build system. Read get_callees get_callees Read get_callers get_callers Read get_communities get_communities Read get_community Get the community that a specific symbol belongs to, with all co-members. Read get_dependents get_dependents Read get_execution_flows Get traced execution flows through the call graph. Read get_impact get_impact Read get_implementors Find all classes that implement or inherit from an interface/base class. Read get_platform_variants get_platform_variants Read get_signature get_signature Read get_symbol get_symbol Read get_tests_for get_tests_for Read get_type_hierarchy get_type_hierarchy Read git_hotspots git_hotspots Read hybrid_search hybrid_search Read index_status Check the current state of the code index. Read learning_stats Get learning statistics — counts by kind over time. Read list_projects List all projects in the workspace with stats. Read platform_conditionals platform_conditionals Read recent_changes recent_changes Read record_learning record_learning Read relevant_learnings relevant_learnings Read search_symbols search_symbols Read semantic_search semantic_search Read server_stats Return when this server process started and how long it has been running. Read show_status show_status Read symbols_in_file symbols_in_file Read whats_changed Show uncommitted changes (work in progress). Read setup_guide Structured setup instructions for AI agents and users.

RELATED SERVERS

Other MCP servers with similar tools — same risk classification, starter policies for each.

BNB Chain MCP 1240 tools
automation
Binance MCP Server 734 tools
automation
Nodebench 724 tools
automation
GoHighLevel MCP Server 566 tools
automation
UnClick 451 tools
automation
NowAIKit — ServiceNow AI Toolkit 446 tools
automation
Mcp Windows 441 tools
automation
0nmcp 407 tools
automation

FAQ

Is the Srclight MCP server safe to use without restrictions? +

The Srclight server is primarily read-only with 40 read tools. While it cannot modify data, an agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up costs. Rate limiting is still recommended.

How many tools does the Srclight MCP server expose? +

42 tools across 3 categories: Execute, Read, Write. 40 are read-only. 2 can modify, create, or delete data.

How do I enforce a policy on Srclight? +

Register the Srclight MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every Srclight tool call.

Deterministic rules across all 42 Srclight tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

ENFORCE POLICY ON SRCLIGHT →

Free to start. No card required.

42 Srclight tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.