// MCP TOOL REFERENCE

CORE TOOLS

9 tools from the Core MCP Server, categorised by risk level.

View the Core policy →

READ TOOLS

5
get_integration_actions Get list of actions available for a specific integration. USE THIS TOOL: After get_integrations to see what operations you can perform. For example... get_integrations List all connected integrations (GitHub, Linear, Slack, etc.). USE THIS TOOL: Before using integration actions to see what's available. WORKFLOW: 1... memory_get_space Get detailed information about a specific space including its full summary. USE THIS TOOL: When working on a project to get comprehensive context a... memory_get_spaces List all available memory spaces (project contexts). USE THIS TOOL: To see what spaces exist before searching or storing memories. Each space organ... memory_search Search stored memories for past conversations, user preferences, project context, and decisions. USE THIS TOOL: 1) At start of every conversation t... 3/5

EXECUTE TOOLS

4
execute_integration_action Execute an action on an integration (fetch GitHub PR, create Linear issue, send Slack message, etc.). USE THIS TOOL: After using get_integration_ac... 3/5 initialize_conversation_session Initialize a session for this conversation. MUST be called FIRST at the start of every conversation before any memory_ingest calls. This generates ... 4/5 memory_about_user Get user's profile information (background, preferences, work, interests). USE THIS TOOL: At the start of conversations to understand who you're he... 3/5 memory_ingest Store conversation in memory for future reference. USE THIS TOOL: At the END of every conversation after fully answering the user. WHAT TO STORE: 1... 4/5
// FAQ
How many tools does the Core MCP server have? +

The Core MCP server exposes 9 tools across 2 categories: Read, Execute.

How do I enforce policies on Core tools? +

Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the Core server.

What risk categories do Core tools fall into? +

Core tools are categorised as Read (5), Execute (4). Each category has a recommended default policy.

Enforce policies on Core

Open source. One binary. Zero dependencies.

npx -y @policylayer/intercept
github.com/policylayer/intercept →
// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.