Home / Token cost / QR for Agent

The QR for Agent MCP server costs 9,483 tokens before the first call.

Every request your agent makes carries every tool definition this server exposes — context your code, documents and conversation can't use, mostly for tools the agent never calls. You don't need them all in the window, and you don't have to pay for them.

QUICK ANSWER The QR for Agent MCP server's 37 tool definitions consume 9,483 tokens — 4.7% of a 200k context window, and 4.6× the median MCP server (2,069 tokens). A scoped grant exposing only the tools you use cuts that roughly in proportion.

MEASURED FROM SCHEMAS tiktoken o200k_base · rank #896 of 3,354 measured servers · refreshed every build Method →

What that costs before your agent starts working.

Tool definitions are overhead: they occupy context on every request and compete with your code, documents and conversation history for the same window.

200K WINDOW 4.7%
1M WINDOW 0.9%

Corpus context: QR for Agent ranks #896 of 3,354 measured MCP servers by definition cost. The median is 2,069 tokens, p90 is 11,359, and the heaviest (SmartBear MCP) is 137,725 — 69% of a 200k window on its own. New to this? See MCP token cost and context window in the glossary.

Where the 9,483 tokens go.

Each row is one tool definition as a tools/list entry — name, description and input schema — counted with o200k_base. Average: 256 tokens per tool.

ToolCategoryTokens% of server
create_qr_code Write 1,011 10.7%
create_vcard_qr Write 475 5.0%
create_wifi_qr Write 458 4.8%
create_social_qr Write 457 4.8%
create_event_qr Write 443 4.7%
create_location_qr Write 419 4.4%
create_email_qr Write 414 4.4%
create_app_store_qr Write 406 4.3%
bulk_create_qr_codes Write 390 4.1%
set_redirect_rules Write 389 4.1%
create_sms_qr Write 372 3.9%
create_text_qr Write 361 3.8%
create_phone_qr Write 356 3.8%
update_qr_destination Write 301 3.2%
bulk_update_qr_codes Write 265 2.8%
record_conversion Write 255 2.7%
set_utm_params Write 254 2.7%
update_vcard_qr Write 232 2.4%
update_social_qr Write 195 2.1%
update_wifi_qr Write 178 1.9%
get_conversions Read 168 1.8%
bulk_create_from_csv Write 150 1.6%
register Write 150 1.6%
create_webhook Write 147 1.6%
get_qr_analytics Read 144 1.5%
set_custom_domain Write 139 1.5%
update_app_store_qr Write 139 1.5%
bulk_delete_qr_codes Destructive 118 1.2%
list_qr_codes Read 115 1.2%
delete_qr_code Destructive 87 0.9%
delete_webhook Destructive 86 0.9%
get_qr_code Read 85 0.9%
upgrade_to_pro Financial 83 0.9%
manage_billing Financial 78 0.8%
get_custom_domain Read 62 0.7%
list_webhooks Read 56 0.6%
get_usage Read 45 0.5%

Your agent uses a handful of these tools. It pays for all 37.

You don't need all 37 of those definitions in the window. PolicyLayer is an MCP gateway that sits in front of QR for Agent: only the tools you grant are exposed to the agent, the rest never load. A smaller window means a sharper agent — less noise when it picks a tool — and every request costs less:

Grant scopeDefinition costReduction
All 37 tools (no gateway) 9,483 tokens
3 granted tools ~769 tokens −92%
5 granted tools ~1,281 tokens −86%
10 granted tools ~2,563 tokens −73%

The risk dividend: 5 of these 37 tools are critical-risk (destructive or financial) and cost 452 tokens (5% of the definition load). Block them — the recommended starter policy — and you reclaim that context before tuning anything else.

  1. Create a free account and register QR for Agent — nothing to install.
  2. Grant only the tools you use — ungranted definitions never enter the context window.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
CUT QR FOR AGENT TOKEN COST →

Instant setup, no code required.

QR for Agent token-cost questions.

How many tokens does the QR for Agent MCP server use?+

Its 37 tool definitions total 9,483 tokens — 4.7% of a 200k context window — measured with tiktoken o200k_base over the serialised tools/list payload. Exact counts vary slightly by client and model.

Why does QR for Agent consume tokens before I send a message?+

MCP clients load every connected server's tool definitions — name, description, and input schema — into the model's context so it knows what it can call. That payload is charged against your context window on every request, whether or not a tool is used.

How do I reduce QR for Agent's token usage?+

Expose fewer tools. A PolicyLayer grant scopes QR for Agent to only the tools you allow — ungranted definitions are filtered out of the tool list, so they never enter the context window. A grant of 3 typical tools costs roughly 769 tokens, a 92% reduction.

Does deferred tool loading fix this?+

Partially, in some clients. Claude Code defers MCP tool schemas behind a tool-search step by default, and VS Code has experimental grouping — but you still pay tokens per search and reload, and Cursor, Windsurf and Gemini CLI load definitions upfront. Reducing the exposed tool set cuts the cost in every client.

How these numbers were measured.

01
Serialisation

Each tool is serialised as a tools/list entry — name, description, input schema — from the schemas in the PolicyLayer scan database. Clients differ slightly in framing, so treat counts as close estimates.

02
Tokeniser

tiktoken o200k_base (GPT-4o/o-series). Anthropic's current tokeniser isn't published, so Claude's exact counts will differ; for English text and JSON schemas the totals are close enough to treat these as estimates.

03
Deferred loading

Some clients now defer schema loading (Claude Code's tool search; VS Code experimental grouping). You still pay per search and reload — and Cursor, Windsurf and Gemini CLI load everything upfront.

Computed 06-07-2026 from the PolicyLayer scan database over all 37 catalogued QR for Agent tools. Counts refresh with every site build.

Expose only the tools you use — the rest never enter your context.

A PolicyLayer grant scopes QR for Agent to the tools you actually allow. Ungranted definitions never load, and every call that does run is checked against policy first.

Instant setup, no code required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.