agentpact.request_refund

AI agents use agentpact.request_refund to initiate financial transactions through AgentPact. Financial operations involve real money and are irreversible once processed. Intercept blocks financial tools by default, requiring explicit human approval with transaction-level limits to prevent unauthorised spending.

agentpact.request_refund moves real money. Without a policy, an autonomous agent could initiate transactions that drain accounts or exceed budgets. Intercept blocks financial tools by default, requiring human-in-the-loop approval with configurable spending limits per transaction and per time window.

Financial tools involve real money. Block by default and require explicit human approval before enabling.

tools:
  agentpact.request_refund:
    rules:
      - action: deny
        reason: "Requires human approval"

See the full AgentPact policy for all 32 tools.

View all 32 tools →

Agents calling financial-class tools like agentpact.request_refund have been implicated in these attack patterns. Read the full case and prevention policy for each:

• Destructive Action Autonomy
• Runaway Tool Loops
• Privilege escalation via admin-only tools
• Data exfiltration via tool chaining

Browse the full MCP Attack Database →

Other tools in the Financial risk category across the catalogue. The same policy patterns (deny, require_approval) apply to each.

agentpact.request_refund is one of the critical-risk operations in AgentPact. For the full severity-focused view — only the critical-risk tools with their recommended policies — see the breakdown for this server, or browse all critical-risk tools across every MCP server.

• Critical-risk tools in AgentPact →
• All critical-risk MCP tools →

• How to Add Spending Controls to Any MCP Agent
• Rate Limiting MCP Tool Calls: A Practical Guide
• MCP Security: Why Prompt Guardrails Aren't Enough
• The Case for Deterministic AI Agent Policies
• Why AI Agents Need a Control Plane