[Pangolinfo MCP 自省] 一次性获取本服务的全部能力清单、典型协同链路、使用提示——无后端调用,免费。 Use when: AI 客户端第一次连上 pangolinfo-mcp,需要快速了解"有哪些工具""怎么搭配用""哪些场景该用哪条链路";用户问"你能做什么""有哪些能力";做 SOP 规划前的能力盘点。 Don't use: 想知道某个具体工具的完整 description(用 tools/list,本工具的 'summary' 模式只给一句话定位);想查账号余额或剩余积点(CONTRACT §9 禁止 MCP 暴露账号接口)。 Returns: { version,...
Part of the Amazon Mcp server.
Free to start. No card required.
AI agents call pangolinfo_capabilities to retrieve information from Amazon Mcp without modifying any data. This is common in research, monitoring, and reporting workflows where the agent needs context before taking action. Because read operations don't change state, they are generally safe to allow without restrictions -- but you may still want rate limits to control API costs.
Even though pangolinfo_capabilities only reads data, uncontrolled read access can leak sensitive information or rack up API costs. An agent caught in a retry loop could make thousands of calls per minute. A rate limit gives you a safety net without blocking legitimate use.
Read-only tools are safe to allow by default. No rate limit needed unless you want to control costs.
{
"version": "1",
"default": "deny",
"tools": {
"pangolinfo_capabilities": {}
}
}See the full Amazon Mcp policy for all 20 tools.
These attack patterns abuse exactly the kind of access pangolinfo_capabilities gives an agent. Each links to the full case and the policy that stops it:
Other read tools across the catalogue. The same approach applies to each: allow, with a rate cap to control cost.
[Pangolinfo MCP 自省] 一次性获取本服务的全部能力清单、典型协同链路、使用提示——无后端调用,免费。 Use when: AI 客户端第一次连上 pangolinfo-mcp,需要快速了解"有哪些工具""怎么搭配用""哪些场景该用哪条链路";用户问"你能做什么""有哪些能力";做 SOP 规划前的能力盘点。 Don't use: 想知道某个具体工具的完整 description(用 tools/list,本工具的 'summary' 模式只给一句话定位);想查账号余额或剩余积点(CONTRACT §9 禁止 MCP 暴露账号接口)。 Returns: { version, locale, liveTools[{name, domain, oneLiner, cost}], workflows[{title, steps[], note}], tips[] }。 Pair with: ↓ AI 看完决定调哪个具体 tool;不消耗下游。 Cost: 0 积点(本地数据,不走后端)。. It is categorised as a Read tool in the Amazon Mcp MCP Server, which means it retrieves data without modifying state.
Register the Amazon MCP server in PolicyLayer and add a rule for pangolinfo_capabilities: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Amazon Mcp. Nothing to install.
pangolinfo_capabilities is a Read tool with low risk. Read-only tools are generally safe to allow by default.
Yes. Add a rate_limit block to the pangolinfo_capabilities rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for pangolinfo_capabilities. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
pangolinfo_capabilities is provided by the Amazon MCP server (https://mcp.pangolinfo.com/mcp?api_key={api_key}). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
Deterministic rules across all 20 Amazon Mcp tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.
Free to start. No card required.
4,600+ MCP servers and 31,000+ tools scanned and risk-classified.