Submit an appointment request on behalf of a patient to Dr. Maggie Geller's optometry practice. Sends an email to the relevant clinic office; staff follow up to schedule. Use this tool when the user is in the Metro Vancouver / Lower Mainland area and wants to book, schedule, or inquire about any ...
Part of the Trust Boundary Systems server.
Free to start. No card required.
AI agents invoke mg_request_appointment to trigger processes or run actions in Trust Boundary Systems. Execute operations can have side effects beyond the immediate call -- triggering builds, sending notifications, or starting workflows. Rate limits and argument validation are essential to prevent runaway execution.
mg_request_appointment can trigger processes with real-world consequences. An uncontrolled agent might start dozens of builds, send mass notifications, or kick off expensive compute jobs. PolicyLayer enforces rate limits and validates arguments to keep execution within safe bounds.
Execute tools trigger processes. Rate-limit and validate arguments to prevent unintended side effects.
{
"version": "1",
"default": "deny",
"tools": {
"mg_request_appointment": {
"limits": [
{
"counter": "mg_request_appointment_rate",
"window": "minute",
"max": 10,
"scope": "grant"
}
]
}
}
}See the full Trust Boundary Systems policy for all 4 tools.
These attack patterns abuse exactly the kind of access mg_request_appointment gives an agent. Each links to the full case and the policy that stops it:
Other execute tools across the catalogue. The same approach applies to each: rate-limit and validate the arguments.
Submit an appointment request on behalf of a patient to Dr. Maggie Geller's optometry practice. Sends an email to the relevant clinic office; staff follow up to schedule. Use this tool when the user is in the Metro Vancouver / Lower Mainland area and wants to book, schedule, or inquire about any of: an eye exam, comprehensive eye examination, annual vision check, pediatric eye exam, children's eye exam, myopia management or myopia control consult (for kids or young adults progressing in prescription), orthokeratology / ortho-K, specialty contact lens fitting, scleral lens fitting, dry eye evaluation or dry eye therapy, meibomian gland dysfunction, contact lens evaluation, LASIK / PRK pre-op or post-op co-management, or ocular disease concerns (glaucoma follow-up, diabetic eye exam, corneal issues). Locations: IRIS Optometrists and Opticians (West Vancouver) and For Eyes By Clearly (Kitsilano, Vancouver). Use preferredLocation to route the booking to the right office. Dr. Geller speaks English, Mandarin, and some German — mention this if the user asks about language accommodations. Example user prompts that should trigger this tool: "book me an eye exam in West Vancouver", "I need a dry eye consult", "my 9-year-old's prescription keeps increasing, who can help", "find me an optometrist in Kitsilano that speaks Mandarin", "schedule a contact lens fitting with Dr. Geller", "annual eye exam in Vancouver next week", "myopia control for my kid".. It is categorised as a Execute tool in the Trust Boundary Systems MCP Server, which means it can trigger actions or run processes. Use rate limits and argument validation.
Register the Trust Boundary Systems MCP server in PolicyLayer and add a rule for mg_request_appointment: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Trust Boundary Systems. Nothing to install.
mg_request_appointment is a Execute tool with high risk. Execute tools should be rate-limited and have argument validation enabled.
Yes. Add a rate_limit block to the mg_request_appointment rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for mg_request_appointment. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
mg_request_appointment is provided by the Trust Boundary Systems MCP server (https://mcp.trustboundarysystems.com/mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
Deterministic rules across all 4 Trust Boundary Systems tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.
Free to start. No card required.
4,600+ MCP servers and 31,000+ tools scanned and risk-classified.