4 tools. 0 can modify or destroy data without limits.
Read-only server. Low risk, but rate limits prevent runaway API costs.
Last updated:
Even read-only tools carry cost. An agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up bills.
Intercept sits between your agent and Employee Zeroemployee-zero. Every tool call checked against your policy before it executes — so your agent can do its job without breaking things.
npx -y @policylayer/intercept scan -- npx -y @wcsdproducer/employee-zero compare_employee_zero:
rules:
- rate_limit: 60/minute Controls API costs and prevents retry loops from exhausting upstream rate limits.
The Employee Zeroemployee-zero server is primarily read-only with 4 read tools. While it cannot modify data, an agent in a retry loop can make thousands of API calls per minute, exhausting rate limits and running up costs. Rate limiting is still recommended.
4 tools across 1 categories: Read. 4 are read-only. 0 can modify, create, or delete data.
One line change. Instead of running the Employee Zeroemployee-zero server directly, prefix it with Intercept: intercept -c wcsdproducer-employee-zero.yaml -- npx -y @wcsdproducer/employee-zero. Download a pre-built policy from policylayer.com/policies/wcsdproducer-employee-zero and adjust the limits to match your use case.
Set budgets, approvals, and hard limits across MCP servers.
npx -y @policylayer/intercept init