180 tools from the Arcane MCP Server, categorised by risk level.
View the Arcane policy →arcane_apikey_list List API keys for the current user arcane_auth_change_password Change the password for the current user arcane_auth_logout Log out of the current session and invalidate tokens arcane_auth_me Get information about the currently authenticated user arcane_auth_refresh Refresh the authentication token using the refresh token arcane_container_get Get detailed information about a specific container arcane_container_get_counts Get container status counts for an environment (running, stopped, etc.) arcane_container_list List Docker containers in an environment with pagination and filtering arcane_container_redeploy Redeploy a single container (pull latest image and recreate) arcane_dashboard_get Get a consolidated dashboard snapshot for an environment (containers, projects, images, volumes, networks, system info) arcane_dashboard_get_action_items Get dashboard action items that need attention (unhealthy containers, available updates, etc.) arcane_environment_get Get details of a specific Docker environment arcane_environment_get_deployment_snippets Get deployment snippets for installing Arcane agent on an environment arcane_environment_get_docker_info Get Docker system information for an environment arcane_environment_get_version Get the Arcane agent version running on an environment arcane_environment_list List all Docker environments configured in Arcane arcane_environment_pair_agent Generate or rotate the local agent pairing token for an environment arcane_environment_test Test connectivity to a Docker environment arcane_event_list List events across all environments arcane_event_list_by_environment List events for a specific environment arcane_git_repo_browse_files Browse files in a Git repository arcane_git_repo_get_branches List branches in a Git repository arcane_git_repo_list List configured Git repositories arcane_git_repo_test Test connectivity to a Git repository arcane_gitops_get Get details of a GitOps sync configuration arcane_gitops_get_status Get the current sync status for a GitOps configuration arcane_gitops_list List GitOps sync configurations arcane_image_check_update Check if a newer version of an image is available arcane_image_check_updates_all Check for updates on all images in an environment arcane_image_get Get detailed information about a Docker image arcane_image_get_counts Get image counts and size statistics for an environment arcane_image_get_update_summary Get a summary of available image updates across all containers arcane_image_list List Docker images in an environment arcane_image_pull Pull a Docker image from a registry arcane_job_list List scheduled jobs in an environment arcane_network_get Get detailed information about a Docker network arcane_network_get_counts Get network counts for an environment arcane_network_get_topology Get the network topology graph showing containers, networks, and their connections arcane_network_list List Docker networks in an environment arcane_notification_apprise_get Get Apprise notification configuration arcane_notification_apprise_test Send a test notification through Apprise arcane_notification_get_settings Get notification settings for an environment arcane_notification_test Send a test notification to verify configuration arcane_oidc_device_code Initiate OIDC device authorization flow. Returns a user code to enter at the verification URL. arcane_oidc_get_config Get OIDC client configuration details arcane_oidc_get_status Get OIDC configuration status (enabled, provider name, etc.) arcane_port_list List all port mappings across containers in an environment with pagination arcane_project_get Get detailed information about a Docker Compose project arcane_project_get_counts Get project status counts for an environment arcane_project_list List Docker Compose projects/stacks in an environment arcane_project_pull_images Pull all images for a Docker Compose project arcane_project_redeploy Redeploy a project (down + up). Useful for applying configuration changes. Use arcane_project_pull_images first to pull latest images. arcane_registry_get Get details of a container registry arcane_registry_list List configured container registries arcane_registry_sync Sync all container registries to refresh image information arcane_registry_test Test connectivity to a container registry arcane_settings_get Get environment settings arcane_settings_get_categories Get available settings categories arcane_settings_get_public Get public settings (no authentication required) arcane_settings_search Search settings and customization options arcane_swarm_get_cluster_info Get Docker Swarm cluster information and node counts arcane_swarm_get_service Get detailed information about a Swarm service arcane_swarm_get_service_logs Get logs from a Swarm service arcane_swarm_init_cluster [CRITICAL] Initialize a new Docker Swarm cluster on this node arcane_swarm_join_cluster Join an existing Docker Swarm cluster arcane_swarm_leave_cluster [CRITICAL RISK] Leave the Docker Swarm cluster. Use force=true for managers. arcane_swarm_list_services List Docker Swarm services in an environment with pagination arcane_system_check_upgrade Check if an Arcane upgrade is available arcane_system_get_docker_info Get Docker system information for an environment arcane_system_get_health Check the health status of the Arcane server arcane_system_upgrade [HIGH RISK] Perform an Arcane system upgrade arcane_template_get Get details of a Docker Compose template arcane_template_get_content Get the Docker Compose YAML content of a template arcane_template_get_variables Get global template variables arcane_template_list List available Docker Compose templates arcane_updater_get_history Get the auto-updater history showing past update operations arcane_updater_get_status Get the current auto-updater status and schedule arcane_user_get Get details of a specific user arcane_user_list List all users in Arcane arcane_version_get Get the Arcane server version information arcane_volume_backup_list List backups for a Docker volume arcane_volume_backup_list_files List files contained in a volume backup arcane_volume_browse Browse files and directories in a Docker volume arcane_volume_browse_content Read the content of a file in a Docker volume arcane_volume_browse_mkdir Create a directory in a Docker volume arcane_volume_get Get detailed information about a Docker volume arcane_volume_get_counts Get volume counts for an environment arcane_volume_list List Docker volumes in an environment arcane_vulnerability_get_environment_summary Get an environment-wide vulnerability summary across all images arcane_vulnerability_get_image_options List images available for vulnerability scanning arcane_vulnerability_get_scan_result Get the full vulnerability scan result for an image arcane_vulnerability_get_scan_summaries Get vulnerability scan summaries for multiple images in batch arcane_vulnerability_get_scan_summary Get a vulnerability scan summary for an image arcane_vulnerability_get_scanner_status Get the status of the Trivy vulnerability scanner arcane_vulnerability_ignore Ignore a specific vulnerability (exclude from counts and alerts) arcane_vulnerability_list List vulnerabilities found in an image with filtering and pagination arcane_vulnerability_list_all List all vulnerabilities across all images in an environment with filtering and pagination arcane_vulnerability_list_ignored List all ignored vulnerabilities in an environment arcane_vulnerability_scan_image Trigger a vulnerability scan for a Docker image arcane_vulnerability_unignore Unignore a previously ignored vulnerability arcane_webhook_list List configured webhooks for an environment arcane_apikey_create Create a new API key arcane_auth_login Authenticate with Arcane using username and password. Returns JWT tokens. arcane_container_create Create a new Docker container arcane_container_set_auto_update Enable or disable automatic updates for a specific container arcane_container_update Pull the latest image and recreate a container with the same configuration. Automatically pulls latest image before recreating. arcane_environment_create Create a new Docker environment in Arcane arcane_environment_update Update an existing Docker environment arcane_event_create Create a custom event for tracking arcane_git_repo_create Add a new Git repository configuration arcane_gitops_create Create a new GitOps sync configuration arcane_gitops_update Update a GitOps sync configuration arcane_image_update_check Check if an image update is available by image reference arcane_image_update_check_all Check all images in an environment for available updates arcane_image_update_check_by_id Check if an image update is available by image ID arcane_image_update_check_multiple Check for updates on multiple images at once arcane_image_update_get_summary Get a summary of image update status for an environment arcane_job_schedule_get Get job schedules for an environment arcane_job_schedule_update Update job schedules for an environment arcane_network_create Create a new Docker network arcane_notification_apprise_update Update Apprise notification configuration arcane_notification_update_settings Update notification settings for an environment arcane_project_create Create a new Docker Compose project from a compose file arcane_project_update Update a Docker Compose project configuration arcane_registry_create Add a new container registry configuration arcane_registry_update Update a container registry configuration arcane_settings_update Update environment settings arcane_swarm_create_service Create a new Docker Swarm service arcane_swarm_update_service Update a Docker Swarm service configuration arcane_template_create Create a new Docker Compose template arcane_template_update Update a Docker Compose template arcane_template_update_variables Update global template variables arcane_updater_update_container Update a single container to the latest image version arcane_user_create Create a new user arcane_user_update Update a user's settings arcane_volume_backup_create Create a backup of a Docker volume arcane_volume_backup_restore Restore a volume from a backup. This will overwrite existing data in the volume. arcane_volume_create Create a new Docker volume arcane_webhook_create Create a new inbound webhook for an environment arcane_webhook_update Update a webhook configuration arcane_apikey_delete Delete an API key (revoke access immediately) arcane_container_delete [HIGH RISK] Delete a Docker container permanently. Use force=true to delete running containers, volumes=true to remove associated volumes. arcane_environment_delete [HIGH RISK] Delete a Docker environment from Arcane. This removes the environment configuration but does not affect the actual Docker host. arcane_event_delete Delete an event from the history arcane_git_repo_delete Delete a Git repository configuration arcane_gitops_delete Delete a GitOps sync configuration arcane_image_delete [HIGH RISK] Remove a Docker image from the host arcane_image_prune [HIGH RISK] Remove all unused Docker images. This frees disk space but cannot be undone. arcane_network_delete [HIGH RISK] Delete a Docker network. Connected containers will be disconnected. arcane_network_prune [HIGH RISK] Remove all unused Docker networks. This cannot be undone. arcane_project_destroy [CRITICAL RISK] Destroy a project completely, including containers and optionally volumes. This cannot be undone! arcane_project_down Stop and remove containers for a Docker Compose project (docker-compose down). Use arcane_project_destroy to also remove volumes. arcane_registry_delete Delete a container registry configuration arcane_swarm_delete_service [HIGH RISK] Delete a Docker Swarm service permanently arcane_system_prune [CRITICAL RISK] Perform Docker system prune - removes unused containers, networks, images, and optionally volumes. This cannot be undone! arcane_template_delete Delete a Docker Compose template arcane_user_delete [HIGH RISK] Delete a user account permanently arcane_volume_backup_delete [HIGH RISK] Delete a volume backup permanently arcane_volume_delete [CRITICAL RISK] Permanently delete a Docker volume and ALL its data. This cannot be undone! arcane_volume_prune [CRITICAL RISK] Remove ALL unused Docker volumes and their data. This cannot be undone! arcane_webhook_delete Delete a webhook configuration arcane_build_get Get detailed information about a specific image build including logs arcane_build_image Build a Docker image from a Dockerfile or Git URL with support for build args and multi-platform builds arcane_build_list List image builds for an environment with optional filtering by status or search query arcane_build_workspace_browse Browse files in the build workspace directory arcane_build_workspace_get_content Get the content of a file from the build workspace arcane_build_workspace_upload Upload a file to the build workspace arcane_container_restart Restart a container arcane_container_start Start a stopped container arcane_container_stop Stop a running container arcane_gitops_sync Trigger a GitOps sync to pull and deploy latest changes from the repository arcane_job_run Run a job immediately arcane_project_build Build images for a Docker Compose project arcane_project_restart Restart all services in a Docker Compose project arcane_project_up Deploy a Docker Compose project (docker-compose up -d). Use arcane_project_pull_images first to pull latest images. arcane_swarm_scale_service Scale a Swarm service to a specific number of replicas arcane_system_containers_start_all Start all stopped containers in an environment arcane_system_containers_start_stopped Start all previously stopped containers in an environment arcane_system_containers_stop_all [HIGH RISK] Stop ALL running containers in an environment arcane_updater_run Run the auto-updater to check and update all containers with available image updates The Arcane MCP server exposes 180 tools across 4 categories: Read, Write, Destructive, Execute.
Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the Arcane server.
Arcane tools are categorised as Read (101), Write (39), Destructive (21), Execute (19). Each category has a recommended default policy.
Deterministic policy on every MCP tool call. Per-identity grants. Full audit log.