32 tools from the Joplin MCP Server, categorised by risk level.
View the Joplin policy →append_to_note Append content to the end of an existing note. download_attachment Download a file attachment from Joplin by resource ID. Saves to specified path. get_note Get the full content of a specific note by ID. Returns title, body (content), notebook, timestamps, and tags. get_note_attachments List all file attachments in a specific note. Optionally sort results. get_notebook_by_id Get a specific notebook by ID. Returns notebook title, parent_id, and timestamps. get_notebook_notes Get all notes from a specific notebook. Returns note titles, IDs, and metadata. Optionally sort results. get_notes_by_tag Get all notes that have a specific tag. Provide either tag_id or tag_name. Optionally sort results. get_resource_metadata Get metadata for a specific resource/attachment including size, MIME type, OCR text, and timestamps. get_resource_notes Find all notes that reference/use a specific resource/attachment. Essential before deleting a resource. Optionally sort results. get_revision Get details of a specific revision by ID. Returns the diff showing what changed (title_diff, body_diff, metadata_diff) and timestamps. Useful for v... get_tag_by_id Get a specific tag by ID. Returns tag title and timestamps. list_all_notes List all notes across all notebooks. Returns note titles, IDs, content, and metadata. Optionally include deleted notes, customize fields, and sort ... list_all_resources List all file attachments (images, PDFs, etc.) across all notes. Returns metadata including OCR text if available. Optionally sort results. 2/5 list_all_revisions List all revisions (version history) across all notes. Returns revision IDs, item_id (note ID), timestamps, and change metadata. Filter by item_id ... list_notebooks List all notebooks (folders) in Joplin. Returns notebook ID, title, parent ID, and timestamps. Optionally sort results. list_tags List all tags in Joplin. Returns tag IDs, names, and timestamps. Optionally sort results. prepend_to_note Prepend content to the beginning of an existing note. search_notes Search for notes using Joplin's powerful query syntax.
Basic syntax:
- Single/multiple words: "linux kernel" (AND logic by default)
- Phrases: "sh... 2/5 add_tags_to_note Add tags to an existing note. Tags will be created if they don't exist. Tags are added to any existing tags (not replaced). 2/5 create_note Create a new note with title and body content. Can create regular notes or todos with due dates. Optionally specify notebook and tags. 2/5 create_notebook Create a new notebook in Joplin. Optionally nest it under a parent notebook. 2/5 move_note_to_notebook Move a note to a different notebook. 2/5 rename_tag Rename a tag. All notes with this tag will show the new name. Provide either tag_id or current_name. 2/5 update_note Update an existing note. Can update title, body, notebook, or convert to/from todo. Use add_tags_to_note or remove_tags_from_note to modify tags. 2/5 update_notebook Update notebook properties (rename or move to different parent). 2/5 update_resource Update a resource/attachment. Can update file content, metadata (title), or both. 3/5 upload_attachment Upload a file attachment (image, PDF, etc.) to Joplin. Returns resource ID that can be referenced in notes. 3/5 delete_note Delete a note (moves it to the trash). 4/5 delete_notebook Delete a notebook. The notebook must be empty. 4/5 delete_resource Delete a resource/attachment from Joplin. WARNING: This will break references in notes that use this resource. Use get_resource_notes first to chec... 4/5 delete_tag Delete a tag from Joplin. All notes will no longer have this tag. 4/5 remove_tags_from_note Remove specific tags from a note. Silently ignores tags that don't exist or aren't on the note. 4/5 The Joplin MCP server exposes 32 tools across 3 categories: Read, Write, Destructive.
Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the Joplin server.
Joplin tools are categorised as Read (18), Write (9), Destructive (5). Each category has a recommended default policy.
Open source. One binary. Zero dependencies.
npx -y @policylayer/intercept