// SCAN REPORT

Usdd Test

32 tools. 12 can modify or destroy data without limits.

4 destructive tools with no built-in limits. Policy required.

Last updated:

12 can modify or destroy data
20 read-only
32 tools total
// TOOL MAP
Read (20) Write / Execute (8) Destructive / Financial (4)
// WHAT CAN GO WRONG

Financial operations (deposit_and_mint, deposit_savings, withdraw_collateral) can move real money. An agent caught in a loop could drain accounts before anyone notices.

Write operations (approve_token, close_vault, connect_browser_wallet) modify state. Without rate limits, an agent can make hundreds of changes in seconds — faster than any human can review or revert.

// RECOMMENDED RULES
Block financial tools by default
deposit_and_mint:
  rules:
    - action: deny

Financial tools should be explicitly enabled per use case, not open by default.

Rate limit write operations
approve_token:
  rules:
    - rate_limit: 30/hour

Prevents bulk unintended modifications from agents caught in loops.

Cap read operations
analyze_vault_risk:
  rules:
    - rate_limit: 60/minute

Controls API costs and prevents retry loops from exhausting upstream rate limits.

// ALL 32 USDD TEST TOOLS
FINANCIAL 4 tools
Financial deposit_and_mint Financial deposit_savings Financial withdraw_collateral Financial withdraw_savings
WRITE 8 tools
Write approve_token Write close_vault Write connect_browser_wallet Write import_wallet Write open_vault Write set_active_wallet Write set_network Write set_wallet_mode
READ 20 tools
Read analyze_vault_risk Read check_allowance Read get_native_balance Read get_network Read get_oracle_status Read get_protocol_overview Read get_psm_status Read get_savings_status Read get_supported_ilks Read get_supported_networks Read get_token_balance Read get_user_vaults Read get_vault_summary Read get_wallet_address Read get_wallet_mode Read list_wallets Read mint_usdd Read psm_swap_from_usdd Read psm_swap_to_usdd Read repay_usdd
// FAQ
Can an AI agent move money through the Usdd Test MCP server? +

Yes. The Usdd Test server exposes 4 financial tools including deposit_and_mint, deposit_savings, withdraw_collateral. Without a policy, an autonomous agent can call these with no spend caps, no rate limits, and no approval flow. Intercept lets you block financial tools by default or set per-tool rate limits.

How do I prevent bulk modifications through Usdd Test? +

The Usdd Test server has 8 write tools including approve_token, close_vault, connect_browser_wallet. Set rate limits in your policy file -- for example, rate_limit: 10/hour prevents an agent from making more than 10 modifications per hour. Intercept enforces this at the transport layer.

How many tools does the Usdd Test MCP server expose? +

32 tools across 3 categories: Financial, Read, Write. 20 are read-only. 12 can modify, create, or delete data.

How do I add Intercept to my Usdd Test setup? +

One line change. Instead of running the Usdd Test server directly, prefix it with Intercept: intercept -c usdd-test.yaml -- npx -y @mcp-server-usdd-test. Download a pre-built policy from policylayer.com/policies/usdd-test and adjust the limits to match your use case.

// RELATED SERVERS

Other MCP servers with similar tools.

Starter policies available for each. Same risk classification, same one-command setup.

Aibtc 308 tools
payments
Agent Passport System — Cryptographic Identity for AI Agents 150 tools
payments
Xdevplatform/xmcp 135 tools
payments
Hiveagent 122 tools
payments
Delx MCP Server 96 tools
payments
Lichess Integration 88 tools
payments
Lichess Integration 88 tools
payments
Voidly 84 tools
payments

Let agents act without letting them run wild.

Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.

GET STARTED →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.