ServiceNow-MCP

412 tools. 163 can modify or destroy data without limits.

6 destructive tools with no built-in limits. Policy required.

Last updated:

163 can modify or destroy data
249 read-only
412 tools total

Community server · catalogue entry verified 30/06/2026

How to control ServiceNow-MCP ↓

What ServiceNow-MCP exposes to your agents

Read (249) Write / Execute (157) Destructive / Financial (6)
Critical Risk

The most dangerous ServiceNow-MCP tools

163 of ServiceNow-MCP's 412 tools can modify, destroy, or commit something on every call — and an agent calls them with no built-in limits.

How to control ServiceNow-MCP

PolicyLayer is an MCP gateway — it sits between your AI agents and ServiceNow-MCP, and nothing reaches the server without passing your rules. These are the rules we recommend:

Deny destructive operations
{
  "cancel_request": {
    "deny_if": [
      {
        "conditions": [],
        "on_deny": "Blocked by default. Requires approval."
      }
    ]
  }
}

Destructive tools should never be available to autonomous agents without human approval.

Rate limit write operations
{
  "add_comment": {
    "limits": [
      {
        "counter": "add_comment_per_hour",
        "window": "hour",
        "max": 30,
        "scope": "grant"
      }
    ]
  }
}

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
{
  "act_on_vr_approval": {
    "limits": [
      {
        "counter": "act_on_vr_approval_per_minute",
        "window": "minute",
        "max": 60,
        "scope": "grant"
      }
    ]
  }
}

Controls API costs and prevents retry loops from exhausting upstream rate limits.

  1. Create a free account and register ServiceNow-MCP — nothing to install.
  2. Add these rules — paste them, or build them visually. Tune the limits to your setup.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
ENFORCE POLICY ON SERVICENOW-MCP →

Instant setup, no code required.

All 412 ServiceNow-MCP tools

EXECUTE 28 tools
Execute commit_changeset Commit an update set (requires SCRIPTING_ENABLED=true) Execute create_business_rule Create a new business rule (requires SCRIPTING_ENABLED=true). ServiceNow supports ES2021 async/await in script Execute create_client_script Create a new client script (onLoad, onChange, onSubmit, onCellEdit) (requires SCRIPTING_ENABLED=true) Execute create_flow_action Create a custom Flow Designer action. [Scripting] Execute create_scheduled_job Create a new scheduled script execution job (requires WRITE_ENABLED=true) Execute create_script_include Create a new script include (requires SCRIPTING_ENABLED=true) Execute execute_background_script Execute a background script on the instance (server-side JavaScript). [Scripting] Execute fire_event Fire a custom ServiceNow event for a specific record (requires WRITE_ENABLED=true) Execute ml_detect_anomalies Run anomaly detection on operational metrics (alert volume, incident trends, etc.) Execute ml_train_anomaly_detector Trigger training of an anomaly detection model for a specific table/field. [Write] Execute ml_train_change_risk Trigger training of the change risk prediction ML model. [Write] Execute ml_train_incident_classifier Trigger training of the incident classification ML solution. [Write] Execute publish_changeset Publish/export an update set to XML for deployment (requires SCRIPTING_ENABLED=true) Execute run_aggregate_query Run a grouped aggregate (COUNT, SUM, AVG) query on any table (latest release: /api/now/stats/{table}) Execute run_atf_suite Execute an ATF test suite (requires ATF_ENABLED=true) Execute run_atf_test Execute a single ATF test (requires ATF_ENABLED=true) Execute run_discovery_scan [Write] Trigger a ServiceNow Discovery scan for network/infrastructure Execute run_security_playbook Execute a security response playbook against an incident. [Write] Execute run_transform_map Execute a Transform Map on an Import Set to load data (requires WRITE_ENABLED=true) Execute scan_vulnerabilities Trigger a vulnerability scan for specified CIs or groups. [Write] Execute switch_update_set Switch the active Update Set context to a specified Update Set. [Scripting] Execute test_flow Execute a flow in test mode with sample inputs. [Write] Execute trigger_agentic_playbook Invoke an Agentic Playbook — context-aware AI agents that complete tasks autonomously Execute trigger_flow Trigger a Flow Designer flow with optional input parameters (requires WRITE_ENABLED=true) Execute trigger_scheduled_job Immediately execute a scheduled job on-demand (requires WRITE_ENABLED=true) Execute update_business_rule Update a business rule (requires SCRIPTING_ENABLED=true) Execute update_script_include Update a script include (requires SCRIPTING_ENABLED=true) Execute update_ui_action Update an existing UI Action (requires SCRIPTING_ENABLED=true)
WRITE 129 tools
Write add_comment Add a customer-visible comment to any ITSM record (requires WRITE_ENABLED=true) Write add_user_to_group Add a user to a group (requires WRITE_ENABLED=true) Write add_vi_to_remediation_task Associate a Vulnerable Item with a remediation group via the Write add_work_note Add an internal work note to any ITSM record (requires WRITE_ENABLED=true) Write approve_request Approve a pending approval request (requires WRITE_ENABLED=true) Write bulk_set_properties Create or update multiple system properties in a single operation. [Write] Write categorize_incident Use Predictive Intelligence to predict category, assignment group, and priority (latest release: LightGBM algo Write clone_artifact Clone a platform artifact to a new name/scope. [Scripting] Write close_change_request Close a change request with close code and notes (requires WRITE_ENABLED=true) Write close_csm_case Close a CSM case with resolution details (requires WRITE_ENABLED=true) Write close_hr_case Close an HR case with resolution notes (requires WRITE_ENABLED=true) Write close_incident Close a resolved incident (requires WRITE_ENABLED=true) Write complete_task Mark a task as complete (requires WRITE_ENABLED=true) Write complete_update_set Mark an Update Set as complete (ready for migration). [Scripting] Write configure_offline_sync Configure which tables/records are available offline in mobile. [Write] Write configure_workspace_list Add or update a list view in an agent workspace. [Write] Write create_acl Create a new ACL rule to control access to a table or field (requires SCRIPTING_ENABLED=true) Write create_approval_rule Create an approval rule that automatically generates approval requests when a record matches given conditions Write create_asset Create a new IT asset record. [Write] Write create_catalog_item Create a new service catalog item (requires WRITE_ENABLED=true) Write create_catalog_ui_policy [Write] Create a UI policy for a catalog item form Write create_catalog_variable [Write] Add a form variable to a service catalog item Write create_change_request Create a new change request (requires WRITE_ENABLED=true) Write create_ci_relationship [Write] Create a relationship between two CMDB Configuration Items Write create_csm_case Create a new Customer Service case (requires WRITE_ENABLED=true) Write create_dashboard Create a new Performance Analytics dashboard (requires WRITE_ENABLED=true) Write create_devops_change Create a change request linked to a DevOps deployment for change governance. [Write] Write create_epic Create a new epic (requires WRITE_ENABLED=true) Write create_flow Create a new Flow Designer flow. [Write] Write create_grc_risk Create a new GRC risk entry. [Write] Write create_group Create a new assignment group (requires WRITE_ENABLED=true) Write create_hr_case Create a new HR Service Delivery case (requires WRITE_ENABLED=true) Write create_hr_task Create a task within an HR case (requires WRITE_ENABLED=true) Write create_import_set_row Insert a row into an Import Set staging table for later transformation (requires WRITE_ENABLED=true) Write create_incident Create a new incident record (requires WRITE_ENABLED=true) Write create_knowledge_article Create a new knowledge article (requires WRITE_ENABLED=true) Write create_kpi [Write] Create a Key Performance Indicator from ServiceNow data Write create_mobile_app_config Create a new mobile app configuration. [Write] Write create_mobile_applet Create a mobile applet in a mobile app. [Write] Write create_mobile_layout Create a mobile layout for a specific view. [Write] Write create_notification Create a new email notification definition (requires WRITE_ENABLED=true) Write create_offboarding_case Create an employee offboarding case with exit tasks. [Write] Write create_onboarding_case Create an employee onboarding case with all standard tasks. [Write] Write create_portal Create a new Service Portal configuration (requires WRITE_ENABLED=true) Write create_portal_page Create a new page inside a Service Portal (requires WRITE_ENABLED=true) Write create_portal_widget Create a new Service Portal widget with template, CSS, and scripts (requires WRITE_ENABLED=true) Write create_problem Create a new problem record (requires WRITE_ENABLED=true) Write create_remediation_task Create a Remediation Task (sn_vul_remediation_task). [Write — requires WRITE_ENABLED=true] Write create_report Create a new saved report on any table (requires WRITE_ENABLED=true) Write create_rest_message Create a new outbound REST Message definition (requires WRITE_ENABLED=true) Write create_scheduled_report [Write] Schedule a report for recurring email delivery Write create_scoped_app Create a new scoped application in App Studio (requires WRITE_ENABLED=true). Write create_scrum_task Create a scrum task (sub-task of a story) (requires WRITE_ENABLED=true) Write create_security_incident Create a Security Operations incident (requires WRITE_ENABLED=true) Write create_soap_message Create a new outbound SOAP Message definition (requires WRITE_ENABLED=true) Write create_soap_message_function Add a SOAP function (operation) to an existing SOAP Message (requires WRITE_ENABLED=true) Write create_solution_package Create a solution package from selected update sets for distribution. [Write] Write create_story Create a new agile story/user story (requires WRITE_ENABLED=true) Write create_subflow Create a new reusable subflow. [Write] Write create_ui_action Create a new UI Action (button or link) on a form (requires SCRIPTING_ENABLED=true) Write create_ui_policy Create a new UI Policy to control field behavior dynamically (requires SCRIPTING_ENABLED=true) Write create_uib_component Create a custom UI Builder component (macroponent). [Scripting] Write create_uib_data_broker Create a UI Builder data broker to feed data to a page. [Scripting] Write create_uib_page Create a new UI Builder page with route registration. [Write] Write create_update_set Create a new Update Set and optionally switch to it. [Scripting] Write create_usem_rule Create a USEM/VR automation rule. Provide the rule_type and a fields object matching Write create_user Create a new user account (requires WRITE_ENABLED=true) Write create_ux_app_route Register a new route (URL path) in a UX app. [Write] Write create_ux_experience Create a new UX Experience (app shell) configuration. [Write] Write create_va_topic Create a new Virtual Agent conversation topic. [Write] Write create_vulnerability_group Create a Vulnerability Group / Remediation Task (sn_vul_vulnerability). Being task-based it Write create_workspace Create a new configurable agent workspace. [Write] Write ensure_active_update_set Ensure an active Update Set exists; create one automatically if none is in progress. [Scripting] Write generate_work_notes Generate AI-drafted work notes for a record based on its current context Write import_cmdb_data Import CI data into CMDB via import set. [Write] Write import_properties Import (create or update) system properties from a JSON object. [Write] Write natural_language_update Update a record using natural language (experimental, requires WRITE_ENABLED=true) Write publish_flow Publish (activate) a draft flow or subflow. [Write] Write publish_knowledge_article Publish a draft knowledge article (requires WRITE_ENABLED=true) Write register_event Register a new custom event in the event registry (requires SCRIPTING_ENABLED=true) Write reject_request Reject a pending approval request (requires WRITE_ENABLED=true) Write resolve_incident Resolve an incident with resolution code and notes (requires WRITE_ENABLED=true) Write resolve_problem Resolve a problem with root cause and resolution notes (requires WRITE_ENABLED=true) Write retire_asset Retire an IT asset (mark as disposed/retired). [Write] Write retire_knowledge_article [Write] Retire a knowledge article (mark as outdated) Write schedule_cab_meeting [Write] Schedule a Change Advisory Board (CAB) meeting Write schedule_notification [Write] Schedule a notification for future delivery Write send_emergency_broadcast [Write] Send emergency broadcast notification to users or groups Write send_push_notification Send a push notification to mobile app users. [Write] Write set_integration_active Enable or disable an integration implementation (sn_sec_int_impl) by sys_id. This turns a Write set_remediation_commitment Set the remediation commitment / target date on a Vulnerable Item (remediation_commitment_dt_tm) Write set_system_property Create or update a ServiceNow system property value. [Write] Write set_usem_rule_active Enable or disable a USEM/VR rule (convenience toggle of the active flag). Write submit_change_for_approval Move a change request to Write switch_instance Switch the active ServiceNow instance for this session Write track_deployment Record a deployment event in ServiceNow for audit and velocity tracking. [Write] Write update_acl Update an existing ACL rule (requires SCRIPTING_ENABLED=true) Write update_asset Update an IT asset record. [Write] Write update_catalog_item Update an existing catalog item (requires WRITE_ENABLED=true) Write update_change_request Update fields on a change request (requires WRITE_ENABLED=true) Write update_client_script Update an existing client script (requires SCRIPTING_ENABLED=true) Write update_csm_case Update fields on an existing CSM case (requires WRITE_ENABLED=true) Write update_dashboard Update an existing PA dashboard (requires WRITE_ENABLED=true) Write update_epic Update an epic (requires WRITE_ENABLED=true) Write update_group Update a group (requires WRITE_ENABLED=true) Write update_hr_case Update fields on an existing HR case (requires WRITE_ENABLED=true) Write update_hr_profile Update HR profile fields for a user (requires WRITE_ENABLED=true) Write update_incident Update fields on an existing incident (requires WRITE_ENABLED=true) Write update_knowledge_article Update a knowledge article (requires WRITE_ENABLED=true) Write update_notification Update an existing email notification (requires WRITE_ENABLED=true) Write update_portal_widget Update an existing Service Portal widget\ Write update_problem Update fields on an existing problem (requires WRITE_ENABLED=true) Write update_remediation_task Update a Remediation Task by sys_id (state, assignee, group, target date, etc.). Write update_report Update an existing saved report definition (requires WRITE_ENABLED=true) Write update_request_item Update a requested item — stage, assignment, or work notes (requires WRITE_ENABLED=true) Write update_scheduled_job Update a scheduled job (requires WRITE_ENABLED=true) Write update_scoped_app Update an existing scoped application (requires WRITE_ENABLED=true) Write update_scrum_task Update a scrum task (requires WRITE_ENABLED=true) Write update_security_incident Update a security incident record (requires WRITE_ENABLED=true) Write update_story Update an agile story (requires WRITE_ENABLED=true) Write update_task Update fields on a task record (requires WRITE_ENABLED=true) Write update_uib_component Update a UI Builder component. [Scripting] Write update_uib_page Update an existing UI Builder page. [Write] Write update_usem_rule Update a USEM/VR automation rule by sys_id with a fields object. Write update_user Update a user account (requires WRITE_ENABLED=true) Write update_va_topic Update a Virtual Agent topic properties. [Write] Write update_vulnerability Update a vulnerability entry (state, risk acceptance notes, remediation date) (requires WRITE_ENABLED=true) Write update_vulnerability_group Update a Vulnerability Group by sys_id — state transitions, (re)assignment, target date, etc. Write upload_attachment Upload a base64-encoded attachment to a ServiceNow record (requires WRITE_ENABLED=true).
READ 249 tools
Read act_on_vr_approval Approve or reject a Vulnerability Response approval (sysapproval_approver) by sys_id, which Read ai_search Semantic AI-powered search across KB, catalog, incidents (ServiceNow AI Search) Read analyze_data_quality Analyse data quality for a table — completeness, duplicates, stale records Read bulk_get_properties Retrieve multiple system property values in a single call Read check_table_access Diagnose the connected service account\ Read check_table_completeness Analyze data quality and field completeness for a ServiceNow table — Read cmdb_health_dashboard Get CMDB data quality metrics (completeness of server and network CI data) Read cmdb_impact_analysis Analyze the downstream impact of a Configuration Item change or outage Read compare_record_counts Compare record counts across multiple ServiceNow tables or time periods — useful for capacity planning Read describe_table Return full field schema for a ServiceNow table using sys_dictionary — includes field types, reference targets Read export_properties Export system properties matching a query to a JSON object (useful for environment snapshots) Read export_report_data Export raw table data as structured JSON for use in external reports Read export_update_set Get the XML export payload for an Update Set (as used in migration). [Scripting] Read find_artifact Search for platform artifacts by name, type, or scope (business rules, scripts, widgets, etc.) Read generate_summary Generate an AI summary of any record using Now Assist (latest release: sn_assist/skill/summarize) Read get_acl Get full details of an ACL rule including its script and role requirements (requires SCRIPTING_ENABLED=true) Read get_asset Get full details of an IT asset including financial and lifecycle data Read get_atf_failure_insight Get ATF Failure Insight data — metadata changes between last successful and failed run (role changes, field va Read get_atf_suite Get details of a test suite including test count Read get_atf_suite_result Get the results of a test suite run Read get_atf_test Get details of a specific test case Read get_attachment_metadata Get metadata (name, type, size) of a specific attachment by its sys_id Read get_business_rule Get full details and script body of a business rule (requires SCRIPTING_ENABLED=true) Read get_catalog_item Get full details of a catalog item including its variables Read get_change_request Get full details of a change request by number (CHG...) or sys_id Read get_changeset Get details of an update set (requires SCRIPTING_ENABLED=true) Read get_client_script Get full details and script body of a client script (requires SCRIPTING_ENABLED=true) Read get_cmdb_ci Get complete information about a specific configuration item Read get_compliance_assessment Get compliance assessment results for a policy or control Read get_csm_account Get details of a customer account including contacts and open cases count Read get_csm_case Get full details of a CSM case by number (e.g. CS0001234) or sys_id Read get_csm_case_sla Get SLA details and remaining time for a CSM case Read get_csm_contact Get details of a customer contact (name, account, phone, email) Read get_current_instance Get the currently active ServiceNow instance name and URL Read get_current_update_set Get the currently active Update Set for the session Read get_deployment Get details and status of a specific deployment Read get_devops_insights Get deployment frequency, failure rate, and lead time metrics for a pipeline Read get_devops_pipeline Get details of a specific DevOps pipeline Read get_email_log Get full details of an email log entry including body and headers Read get_event_registry_entry Get details of a specific registered event definition Read get_flow Get full details of a Flow Designer flow including its actions and trigger Read get_flow_error_log Get detailed error logs for failed flow executions Read get_flow_execution Get the status and details of a specific flow execution Read get_grc_risk Get details of a GRC risk including impact, likelihood, and controls Read get_group Find assignment group details by name or sys_id Read get_group_sla Get both SLA views for a task-based Vulnerability Group (sn_vul_vulnerability) by VUL number Read get_hr_case Get full details of an HR case by number (e.g. HRCS0001234) or sys_id Read get_hr_case_activity Get the full activity log and journal entries for an HR case Read get_hr_lifecycle_events Get HR lifecycle events for an employee (promotions, transfers, leaves) Read get_hr_profile Get the HR profile for a user (employment details, department, manager) Read get_hr_service Get details of a specific HR service including its tasks and SLAs Read get_import_set Get details of a specific Import Set including row count and transform status Read get_incident Get full details of an incident by number (e.g. INC0012345) or sys_id Read get_integration_health Report the health of Vulnerability Response data integration runs (sn_vul_integration_run) over a recent windo Read get_integration_run Get full detail of a single Vulnerability Integration Run by run number (VINTRUNxxxx) or Read get_knowledge_article Get the full content of a knowledge article by number (KB...) or sys_id Read get_license_compliance Get license compliance summary — purchased vs. installed vs. in use counts Read get_license_optimization Analyze software license usage and recommend optimizations Read get_mobile_analytics Get mobile app usage analytics — sessions, active users, popular applets Read get_mobile_app_config Get details of a specific mobile app configuration Read get_ms_copilot_topics List VA topics exposed to Microsoft Copilot 365 via Custom Engine Agent integration Read get_my_approvals List approvals pending for the currently configured user Read get_notification Get full details of an email notification definition including template and conditions Read get_nvd_entry_by_cve Look up a single NVD entry by exact CVE id (e.g. Read get_pa_dashboard Get details of a PA dashboard including its widgets/tabs Read get_pa_indicator Get details of a specific Performance Analytics indicator including its formula Read get_pa_job Get details of a Performance Analytics collection job Read get_pa_scorecard Get current scorecard data for a PA indicator — returns current value, target, trend direction Read get_pa_time_series Get historical time-series data for a PA indicator to identify trends Read get_performance_analytics Get Performance Analytics widget data (requires PA plugin; latest release: /api/now/pa/widget/{sys_id}) Read get_pi_models List available Predictive Intelligence solutions (classification/similarity models) Read get_portal Get full configuration details of a Service Portal by sys_id or URL suffix Read get_portal_page Get details of a specific Service Portal page including its layout Read get_portal_theme Get full details of a Service Portal theme including CSS variables Read get_portal_widget Get full source code (HTML, CSS, client/server scripts) of a Service Portal widget Read get_problem Get full details of a problem by number (PRB...) or sys_id Read get_process_automation Get details of a Process Automation Designer playbook or process Read get_property_history Get audit history of changes to a system property Read get_record Retrieve complete details of a specific record by sys_id Read get_remediation_sla Get the SLA (TTR) detail for a single Vulnerable Item, Remediation Task, or Vulnerability Read get_remediation_task Get full details of a single Remediation Task by sys_id or task number. Read get_report Get the definition and metadata of a saved report Read get_request Get a service catalog request (sc_request) by number or sys_id, including its requested items Read get_request_item Get a requested item (sc_req_item) by number or sys_id, including its fulfillment tasks Read get_rest_message Get full configuration of an outbound REST Message including its endpoints Read get_scheduled_job Get full details of a scheduled job by sys_id or name Read get_scoped_app Get full details of a scoped application by sys_id or scope name Read get_script_include Get full script body of a script include (requires SCRIPTING_ENABLED=true) Read get_security_dashboard Get security posture dashboard — open incidents by severity, vulnerability counts, mean time to resolve Read get_security_incident Get full details of a security incident by number or sys_id Read get_sla_details Get SLA breach status for a specific task or incident Read get_soap_message Get full configuration of a SOAP Message including its functions/operations Read get_subflow Get full details of a subflow including its inputs, outputs, and actions Read get_sys_log Retrieve system log entries for debugging or auditing Read get_system_property Get a ServiceNow system property value and metadata by name Read get_table_record_count Get total record count for a ServiceNow table with optional filters Read get_table_schema Get the structure and field information for a ServiceNow table Read get_task Get details of any task record by number or sys_id Read get_threat_intelligence Query threat intelligence data — IOCs, threat actors, and campaigns Read get_transform_map Get details of a Transform Map including its field mappings Read get_ui_action Get full details and script of a UI Action (requires SCRIPTING_ENABLED=true) Read get_ui_policy Get full details and conditions of a UI Policy (requires SCRIPTING_ENABLED=true) Read get_uib_page Get details of a specific UI Builder page including layout and child elements Read get_usem_dashboard Summarize the USEM posture: Vulnerable Item counts by state, Remediation Task counts by state, Read get_usem_rule Get the full definition of a single USEM/VR rule by sys_id. Read get_user Look up user details by email or username Read get_ux_app Get configuration details of a Next Experience application Read get_va_conversation Get conversation history for a Virtual Agent session Read get_va_topic Get Virtual Agent topic details including intent and trigger phrases Read get_virtual_agent_topics List Virtual Agent topics available in the instance (latest release: streaming VA API) Read get_vulnerability Get details of a specific vulnerability entry including CVSS score and affected CIs Read get_vulnerability_group Get full details of a single Vulnerability Group by sys_id or VUL number (e.g. Read get_vulnerable_item Get full details of a single Vulnerable Item by sys_id or VI number (e.g. Read get_workspace Get details of a configurable agent workspace including tabs and lists Read list_acls List Access Control rules (ACLs) — who can read/write/create/delete records (requires SCRIPTING_ENABLED=true) Read list_action_instances List reusable Flow Designer action instances available in the environment Read list_active_events Monitor critical infrastructure events Read list_active_slas List active SLA records with optional filters Read list_approvals List approval requests with optional filters Read list_asset_contracts List asset maintenance and support contracts Read list_assets List IT assets with optional filtering by state, class, or assigned user Read list_atf_suites List ATF test suites in the instance Read list_atf_test_results List individual test results within a suite run Read list_atf_tests List ATF test cases, optionally filtered by suite Read list_attachments List attachments associated with a specific record Read list_audit_results List audit results and findings Read list_business_rules List business rules (requires SCRIPTING_ENABLED=true) Read list_catalog_items List available service catalog items Read list_change_requests List change requests with optional filtering by state or query Read list_changesets List update sets (changesets) (requires SCRIPTING_ENABLED=true) Read list_client_scripts List client scripts (requires SCRIPTING_ENABLED=true) Read list_compliance_policies List GRC compliance policies and their current status Read list_credential_aliases List connection and credential aliases used by integrations Read list_csm_accounts List customer accounts with optional search filter Read list_csm_cases List CSM cases with optional filters (account, contact, state, priority) Read list_csm_contacts List contacts for an account or search across all contacts Read list_csm_products List products and services available in the CSM catalog Read list_data_sources List Import Set data source definitions (file/JDBC/REST loaders) Read list_deployment_history List deployment history — committed update sets and app installs over time Read list_deployments List recent application deployments tracked in ServiceNow Read list_devops_pipelines List DevOps pipeline configurations registered in ServiceNow Read list_discovery_schedules List discovery schedules and their run status Read list_email_logs List outbound email log entries to track sent/failed emails Read list_email_templates List email notification templates used by notifications Read list_epics List epics with optional project or state filter Read list_event_log List recent event log entries (fired events and their processing status) Read list_event_registry List registered event definitions in the ServiceNow event registry Read list_flow_executions List recent executions of a flow with status (completed, error, running) Read list_flows List Flow Designer flows with optional filter by name, category, or active status Read list_grc_controls List GRC controls with optional filter by risk or policy Read list_grc_risks List GRC (Governance, Risk, Compliance) risk entries Read list_groups List groups with optional search filter Read list_homepages List homepage dashboards (CMS content pages used as homepages) Read list_hr_cases List HR cases with optional filters (status, subject person, service) Read list_hr_document_templates List available HR document templates (offer letters, contracts, policies) Read list_hr_services List available HR services (Onboarding, Offboarding, Benefits, Payroll, etc.) Read list_hr_tasks List HR tasks associated with an HR case Read list_import_sets List Import Sets with optional filter by state or staging table Read list_instances List all configured ServiceNow instances (multi-instance / multi-customer support) Read list_integration_implementations List configured integration implementations/instances (sn_sec_int_impl) — the operational Read list_integration_logs List integration log entries (sn_vul_integration_log) for troubleshooting — error and Read list_integration_runs List Vulnerability Integration Runs (sn_vul_integration_run) with detail. Filter by source Read list_integrations List the USEM/VR integration catalog (sn_sec_int_integration) — the available security Read list_job_run_history List recent run history for scheduled jobs (success/failure log) Read list_knowledge_bases List all knowledge bases available in the instance Read list_mid_servers List MID servers and verify they are healthy Read list_mobile_app_configs List ServiceNow mobile app configurations Read list_mobile_applets List mobile applets (mini-apps within the mobile experience) Read list_mobile_layouts List mobile layout configurations Read list_my_tasks List tasks assigned to the currently configured user Read list_notification_subscriptions List user subscriptions to notifications (who has opted in/out) Read list_notifications List email notification definitions (sysevent_email_action) Read list_nvd_entries List NVD entries (sn_vul_nvd_entry). Filter by CVE id substring or minimum CVSS v3 base score. Read list_oauth_applications List OAuth application registry entries (client applications that can authenticate) Read list_pa_breakdowns List PA breakdowns (dimensions) available for segmenting indicator data Read list_pa_dashboards List Performance Analytics dashboards Read list_pa_indicators List Performance Analytics (PA) indicators (KPIs) available in the instance Read list_pa_jobs List Performance Analytics data collection jobs and their schedules Read list_portal_pages List pages that belong to a Service Portal Read list_portal_themes List Service Portal themes (color palettes, CSS variables) Read list_portal_widgets List Service Portal widgets with optional search by name or category Read list_portals List all Service Portal configurations available in the instance Read list_process_automations List Process Automation Designer playbooks and processes Read list_property_categories List all unique property categories with their record counts Read list_relationships Show parent and child relationships for a CI Read list_remediation_sla List the SLA (Time-To-Remediate) status of Vulnerable Items, Remediation Tasks, or Read list_remediation_tasks List USEM Remediation Tasks (sn_vul_remediation_task). Filter by state or assignment group. Read list_reports List saved reports in the instance (latest release: /api/now/reporting) Read list_request_items List requested items (sc_req_item) for a given request or catalog item Read list_requests List service catalog requests (sc_request). Supports filtering by state and requested_for user. Read list_rest_message_functions List HTTP methods (functions) defined within a REST Message Read list_rest_messages List outbound REST Message configurations (integrations with external APIs) Read list_scheduled_jobs List scheduled jobs and their run schedules Read list_scoped_apps List scoped applications (custom apps) installed in the instance Read list_script_includes List script includes (requires SCRIPTING_ENABLED=true) Read list_scrum_tasks List scrum tasks, optionally filtered by story Read list_security_incidents List security incidents with filters (severity, state, category) Read list_security_playbooks List available security response playbooks Read list_soap_message_functions List SOAP Message Functions (operations) for a given SOAP Message Read list_soap_messages List outbound SOAP Message configurations (sys_web_service) Read list_software_licenses List software license records with compliance status Read list_stories List agile stories with optional sprint or state filter Read list_subflows List available subflows that can be reused across flows Read list_system_properties List system properties with optional filtering Read list_transform_field_maps List field-level mappings within a Transform Map Read list_transform_maps List Transform Maps used for importing data into ServiceNow tables Read list_ui_actions List UI Actions (buttons, context menus, related links) for a table (requires SCRIPTING_ENABLED=true) Read list_ui_policies List UI Policies for a table (field visibility, mandatory, read-only rules) (requires SCRIPTING_ENABLED=true) Read list_uib_components List available UI Builder components (macroponents) in the instance Read list_uib_data_brokers List UI Builder data brokers (data sources for pages) Read list_uib_pages List UI Builder pages and their route configurations Read list_update_sets List Update Sets by state (in progress, complete, ignore) Read list_usem_rules List USEM/Vulnerability Response automation rules of a given type (assignment, Read list_users List users with optional search filter Read list_ux_apps List Next Experience (UI Builder) applications Read list_ux_pages List pages within a Next Experience (UI Builder) application Read list_va_categories List Virtual Agent topic categories Read list_va_conversations List recent Virtual Agent conversations Read list_va_topics_full List all Virtual Agent topics with category and status details Read list_vr_approvals List approval records (sysapproval_approver) for Vulnerability Response items — exception, Read list_vr_exception_requests List Vulnerability Response exception requests (sn_sec_exception_change_approval) — False Read list_vr_notifications List Vulnerability Response notification definitions (sysevent_email_action) scoped to the VR Read list_vulnerabilities List vulnerability entries from the Vulnerability Response module Read list_vulnerability_groups List Vulnerability Groups (sn_vul_vulnerability) — the task-based remediation entity Read list_vulnerable_items List USEM Vulnerable Items (sn_vul_vulnerable_item). Filter by state, minimum risk score, Read list_widget_instances List instances of a specific widget placed on portal pages Read list_workspaces List all configurable agent workspaces Read ml_evaluate_model Get accuracy, training status, and metrics for a trained ML solution Read ml_forecast_incidents Forecast incident volume for the next N days based on historical trends Read ml_model_training_history Get training run history and accuracy trends for an ML solution over time Read ml_predict_change_risk Predict the risk level of a change request using historical ML analysis Read ml_process_optimization Identify process bottlenecks using analysis of task durations and reassignment patterns Read ml_virtual_agent_nlu Analyse Virtual Agent NLU performance — conversation completion rates and fallback metrics Read natural_language_search Search ServiceNow using plain English (experimental) Read nlq_query Ask a natural language question and get structured ServiceNow data (ServiceNow NLQ API) Read order_catalog_item Order a service catalog item (requires WRITE_ENABLED=true) Read preview_update_set Preview all changes contained in an Update Set Read query_records Query ServiceNow records with filtering, field selection, pagination, and sorting Read search_catalog Search the service catalog for items matching a keyword Read search_cmdb_ci Search for configuration items (CIs) in the CMDB Read search_knowledge Search knowledge base articles by keyword Read search_system_properties Search system properties by name, value, or description Read service_mapping_summary View service dependencies and related CIs for impact analysis Read suggest_resolution Get AI-powered resolution suggestion for an incident based on similar past incidents Read track_asset_lifecycle Track asset lifecycle events and stage transitions Read trend_query Get time-bucketed trend data for a table (useful for monthly/weekly trend charts) Read validate_artifact Validate an artifact for best practices, security issues, and performance concerns Read validate_deployment Pre-validate an update set or app before deployment — check for conflicts and missing dependencies Read validate_property Validate a property value against its declared type constraints without saving

Related servers

Other MCP servers with similar tools — same risk classification, starter policies for each.

Questions about ServiceNow-MCP

Can an AI agent delete data through the ServiceNow- MCP server? +

Yes. The ServiceNow-MCP server exposes 6 destructive tools including cancel_request, delete_attachment, delete_system_property. These permanently remove resources with no undo. PolicyLayer blocks destructive tools by default so they never reach the upstream server.

How do I prevent bulk modifications through ServiceNow-MCP? +

The ServiceNow-MCP server has 129 write tools including add_comment, add_user_to_group, add_vi_to_remediation_task. Set a rate limit in your policy -- for example, 10 calls per hour prevents an agent from making more than 10 modifications per hour. PolicyLayer enforces this at the gateway, before calls reach ServiceNow-MCP.

How many tools does the ServiceNow- MCP server expose? +

412 tools across 4 categories: Destructive, Execute, Read, Write. 249 are read-only. 163 can modify, create, or delete data.

How do I enforce a policy on ServiceNow-MCP? +

Register the ServiceNow- MCP server in PolicyLayer, apply the suggested rules above (adjust the limits to your use case), and point your AI client at the PolicyLayer proxy URL instead of the server directly. Your agents keep the same tools; PolicyLayer evaluates every call against policy before it executes. Nothing to install, live in minutes.

Enforce policy on every ServiceNow-MCP tool call.

Deterministic rules across all 412 ServiceNow-MCP tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

Instant setup, no code required.

412 ServiceNow-MCP tools catalogued and risk-classified — across an index of 43,000+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.