// MCP TOOL REFERENCE

Q RING TOOLS

50 tools from the Q Ring MCP Server, categorised by risk level.

// ALL 50 Q RING TOOLS

READ 39 tools

Read agent_forget agent_forget Read agent_recall agent_recall Read agent_remember agent_remember Read agent_scan agent_scan Read analyze_secrets analyze_secrets Read audit_log audit_log Read aws AWS access key validation (checks key format only \u2014 full STS validation requires secret key + region) Read aws-sts AWS STS AssumeRole (requires existing local AWS CLI credentials) Read check_policy check_policy Read check_project check_project Read ci_validate_secrets ci_validate_secrets Read detect_anomalies detect_anomalies Read detect_environment detect_environment Read disentangle_secrets disentangle_secrets Read entangle_secrets entangle_secrets Read exec_with_secrets exec_with_secrets Read get_policy_summary get_policy_summary Read get_project_context get_project_context Read get_secret get_secret Read github GitHub token validation Read has_secret has_secret Read health_check health_check Read http Generic HTTP token endpoint using Node.js http/https Read inspect_secret inspect_secret Read lint_files lint_files Read list_hooks list_hooks Read list_providers list_providers Read list_secrets list_secrets Read openai OpenAI API key validation Read rotate_secret rotate_secret Read scan_codebase_for_secrets scan_codebase_for_secrets Read status_dashboard status_dashboard Read stripe Stripe API key validation Read teleport_pack teleport_pack Read teleport_unpack teleport_unpack Read tunnel_list tunnel_list Read tunnel_read tunnel_read Read validate_secret validate_secret Read verify_audit_chain verify_audit_chain

WRITE 8 tools

Write env_generate env_generate Write export_audit export_audit Write export_secrets export_secrets Write generate_secret generate_secret Write import_dotenv import_dotenv Write register_hook register_hook Write set_secret set_secret Write tunnel_create tunnel_create

DESTRUCTIVE 3 tools

Destructive delete_secret delete_secret Destructive remove_hook remove_hook Destructive tunnel_destroy tunnel_destroy

// RUNNING THIS SERVER

The managed route: connect Q Ring through the PolicyLayer gateway — every tool call above is checked against your policy before it runs, with a full audit log.

DIRECT INSTALL (UNMANAGED) npx -y @i4ctime/q-ring

// FAQ

How many tools does the Q Ring MCP server have? +

The Q Ring MCP server exposes 50 tools across 3 categories: Read, Write, Destructive.

How do I enforce policies on Q Ring tools? +

Route the Q Ring server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard — they are enforced on every call before it reaches the server.

What risk categories do Q Ring tools fall into? +

Q Ring tools are categorised as Read (39), Write (8), Destructive (3). Each category has a recommended default policy.

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

SECURE YOUR MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.