// MCP TOOL REFERENCE
Critical Risk →

signals.report

Pro/Teams — records a value moment (review_confidence, runtime_risk_found, regression_caught, recommendation_taken) after a successful architect.validate or design session. Each event captures event_type, surface_used (mcp/web/cli), perceived_value (1-5), and an optional brief_context — structure...

Risk signalsBulk/mass operation — affects multiple targets · Admin/system-level operation

Part of the AI Design Blueprint server.

signals.report can permanently delete data in AI Design Blueprint, with no limits today. PolicyLayer puts allow, deny, and rate-limit rules on every call. Live in minutes.

SECURE AI DESIGN BLUEPRINT →

Free to start. No card required.

WHEN AGENTS USE THIS TOOL

AI agents may call signals.report to permanently remove or destroy resources in AI Design Blueprint. Without a policy, an autonomous agent could delete critical data in a loop with no way to undo the damage. PolicyLayer blocks destructive tools by default and requires explicit human approval before enabling them.

Without a policy, an AI agent could call signals.report in a loop, permanently destroying resources in AI Design Blueprint. There is no undo for destructive operations. PolicyLayer blocks this tool by default and only allows it when a human explicitly approves the action.

RECOMMENDED POLICY

Destructive tools permanently remove data. Block by default. Only enable with explicit approval workflows.

policy.json 
{
  "version": "1",
  "default": "deny",
  "hide": [
    "signals.report"
  ]
}

See the full AI Design Blueprint policy for all 24 tools.

Get this rule live on your own AI Design Blueprint server in minutes. PolicyLayer enforces it on every call, before it runs.

ENFORCE ON MY AI DESIGN BLUEPRINT →

MORE AI DESIGN BLUEPRINT TOOLS

Destructive architect.validate Destructive assets.list Execute architect.certify Execute architect.validate_consensus Execute me.validation_history Write clusters.get Write handoffs.agency Write handoffs.operator

View all 24 tools →

WHAT CAN GO WRONG

These attack patterns abuse exactly the kind of access signals.report gives an agent. Each links to the full case and the policy that stops it:

Browse the full MCP Attack Database →

Every attack above starts with a tool call. PolicyLayer checks each one against your policy first, so signals.report only ever does what you allow.

SECURE AI DESIGN BLUEPRINT →

OTHER DESTRUCTIVE TOOLS

Other destructive tools across the catalogue. The same approach applies to each: deny by default, or require human approval.

AbraFlexi contact_delete AbraFlexi evidence_delete AbraFlexi invoice_issued_delete AbraFlexi product_delete ACR — Agent Composition Records acknowledge_signal AdButler campaign_bulk_delete_catalog_ad_items

RELATED READING

FAQ

What does the signals.report tool do? +

Pro/Teams — records a value moment (review_confidence, runtime_risk_found, regression_caught, recommendation_taken) after a successful architect.validate or design session. Each event captures event_type, surface_used (mcp/web/cli), perceived_value (1-5), and an optional brief_context — structured fields only, NO prompts or code stored. WHEN TO CALL: after architect.validate returns a clearly useful result AND the user has acknowledged the value (or you ask them "would you rate this 1-5?"). Validate's response carries an explicit next_step instruction telling the agent to OFFER this call — surface that offer to the user. WHEN NOT TO CALL: silently or without the user's awareness; on every validate (only after a clear value moment); to capture intent or speculative value. If the user declines, do not retry within the same session. BEHAVIOR: write-only, single insert into ValueEvent. Auth: Bearer <token>, Pro or Teams plan required. UK/EU residency. Do NOT include proprietary code, prompt content, or PII in brief_context — it surfaces in admin AI-visibility dashboards. Expect a 1-line acknowledgment in the response; the structured feedback is then aggregated server-side.. It is categorised as a Destructive tool in the AI Design Blueprint MCP Server, which means it can permanently delete or destroy data. Block by default and require explicit approval.

How do I enforce a policy on signals.report? +

Register the AI Design Blueprint MCP server in PolicyLayer and add a rule for signals.report: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches AI Design Blueprint. Nothing to install.

What risk level is signals.report? +

signals.report is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.

Can I rate-limit signals.report? +

Yes. Add a rate_limit block to the signals.report rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block signals.report completely? +

Set action: deny in the PolicyLayer policy for signals.report. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides signals.report? +

signals.report is provided by the AI Design Blueprint MCP server (https://aidesignblueprint.com/mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every AI Design Blueprint tool call.

Deterministic rules across all 24 AI Design Blueprint tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

SECURE AI DESIGN BLUEPRINT →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.