withdraw_cdp

AI agents use withdraw_cdp to initiate financial transactions through Indigo Protocol MCP. Financial operations involve real money and are irreversible once processed. Intercept blocks financial tools by default, requiring explicit human approval with transaction-level limits to prevent unauthorised spending.

withdraw_cdp moves real money. Without a policy, an autonomous agent could initiate transactions that drain accounts or exceed budgets. Intercept blocks financial tools by default, requiring human-in-the-loop approval with configurable spending limits per transaction and per time window.

Financial tools involve real money. Block by default and require explicit human approval before enabling.

tools:
  withdraw_cdp:
    rules:
      - action: deny
        reason: "Requires human approval"

See the full Indigo Protocol MCP policy for all 62 tools.

View all 62 tools →

Agents calling financial-class tools like withdraw_cdp have been implicated in these attack patterns. Read the full case and prevention policy for each:

• Destructive Action Autonomy
• Runaway Tool Loops
• Privilege escalation via admin-only tools
• Data exfiltration via tool chaining

Browse the full MCP Attack Database →

Other tools in the Financial risk category across the catalogue. The same policy patterns (deny, require_approval) apply to each.

withdraw_cdp is one of the critical-risk operations in Indigo Protocol MCP. For the full severity-focused view — only the critical-risk tools with their recommended policies — see the breakdown for this server, or browse all critical-risk tools across every MCP server.

• Critical-risk tools in Indigo Protocol MCP →
• All critical-risk MCP tools →

• How to Add Spending Controls to Any MCP Agent
• Rate Limiting MCP Tool Calls: A Practical Guide
• MCP Security: Why Prompt Guardrails Aren't Enough
• The Case for Deterministic AI Agent Policies
• Why AI Agents Need a Control Plane