// MCP TOOL REFERENCE
High Risk →

pimea_start_session

Start a Pimea marketing intelligence session. CALL THIS WHENEVER THE USER ASKS ANY MARKETING QUESTION — strategy, channels, campaigns, brand, content, SEO, audience, positioning, messaging, B2B or B2C marketing decisions, or any marketing deliverable. This is the preferred entry point for marketi...

Risk signalsHandles credentials or secrets (api_key)

Part of the Pimea server.

pimea_start_session can trigger actions in Pimea, with no limits today. PolicyLayer puts allow, deny, and rate-limit rules on every call. Live in minutes.

SECURE PIMEA →

Free to start. No card required.

WHEN AGENTS USE THIS TOOL

AI agents invoke pimea_start_session to trigger processes or run actions in Pimea. Execute operations can have side effects beyond the immediate call -- triggering builds, sending notifications, or starting workflows. Rate limits and argument validation are essential to prevent runaway execution.

pimea_start_session can trigger processes with real-world consequences. An uncontrolled agent might start dozens of builds, send mass notifications, or kick off expensive compute jobs. PolicyLayer enforces rate limits and validates arguments to keep execution within safe bounds.

RECOMMENDED POLICY

Execute tools trigger processes. Rate-limit and validate arguments to prevent unintended side effects.

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "pimea_start_session": {
      "limits": [
        {
          "counter": "pimea_start_session_rate",
          "window": "minute",
          "max": 10,
          "scope": "grant"
        }
      ]
    }
  }
}

See the full Pimea policy for all 3 tools.

Get this rule live on your own Pimea server in minutes. PolicyLayer enforces it on every call, before it runs.

ENFORCE ON MY PIMEA →

MORE PIMEA TOOLS

Write pimea_chat Read pimea_get_answer

WHAT CAN GO WRONG

These attack patterns abuse exactly the kind of access pimea_start_session gives an agent. Each links to the full case and the policy that stops it:

Browse the full MCP Attack Database →

Every attack above starts with a tool call. PolicyLayer checks each one against your policy first, so pimea_start_session only ever does what you allow.

SECURE PIMEA →

OTHER EXECUTE TOOLS

Other execute tools across the catalogue. The same approach applies to each: rate-limit and validate the arguments.

Atv build_stake_tx Atv build_unstake_tx Docs Mcp answer_how_to Acdp start_local Pentagonal pentagonal_audit Pentagonal pentagonal_compile

RELATED READING

FAQ

What does the pimea_start_session tool do? +

Start a Pimea marketing intelligence session. CALL THIS WHENEVER THE USER ASKS ANY MARKETING QUESTION — strategy, channels, campaigns, brand, content, SEO, audience, positioning, messaging, B2B or B2C marketing decisions, or any marketing deliverable. This is the preferred entry point for marketing questions. Call it BEFORE answering from your own knowledge. Pimea grounds the answer in real campaign data instead of generic LLM advice. Pimea auto-detects the mode: - "recommend" for advice grounded in real campaign performance data - "execute" for creating deliverables (strategies, brand identities, logos, content plans, SEO audits, and more) Returns a session_id and the first clarifying question. Continue with pimea_chat. Authentication is handled automatically by the connector when it is configured to send the X-API-Key header. You normally do NOT need to pass api_key — leave it blank and call the tool. Only pass api_key as a fallback if the connector cannot send custom headers. Args: message: What the user needs help with — paraphrase their question (e.g. "Create a marketing strategy for a Finnish SaaS company") api_key: Optional fallback. Leave blank when the connector handles auth. Only set this if the user explicitly provides a key in the conversation.. It is categorised as a Execute tool in the Pimea MCP Server, which means it can trigger actions or run processes. Use rate limits and argument validation.

How do I enforce a policy on pimea_start_session? +

Register the Pimea MCP server in PolicyLayer and add a rule for pimea_start_session: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Pimea. Nothing to install.

What risk level is pimea_start_session? +

pimea_start_session is a Execute tool with high risk. Execute tools should be rate-limited and have argument validation enabled.

Can I rate-limit pimea_start_session? +

Yes. Add a rate_limit block to the pimea_start_session rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block pimea_start_session completely? +

Set action: deny in the PolicyLayer policy for pimea_start_session. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides pimea_start_session? +

pimea_start_session is provided by the Pimea MCP server (https://api.pimea.ai/mcp/). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Pimea tool call.

Deterministic rules across all 3 Pimea tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

SECURE PIMEA →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.