bear_attach_file

Accepts file system path (file_path)

Part of the Better Bear MCP server. Enforce policies on this tool with Intercept, the open-source MCP proxy.

better-bear Write Risk 3/5

// WHEN AI AGENTS USE THIS TOOL

AI agents use bear_attach_file to create or modify resources in Better Bear. Write operations carry medium risk because an autonomous agent could trigger bulk unintended modifications. Rate limits prevent a single agent session from making hundreds of changes in rapid succession. Argument validation ensures the agent passes expected values.

// WHY ENFORCE A POLICY ON BEAR_ATTACH_FILE

Without a policy, an AI agent could call bear_attach_file repeatedly, creating or modifying resources faster than any human could review. Intercept's rate limiting ensures write operations happen at a controlled pace, and argument validation catches malformed or unexpected inputs before they reach Better Bear.

// RECOMMENDED POLICY

Write tools can modify data. A rate limit prevents runaway bulk operations from AI agents.

io-github-kuvopllc-better-bear.yaml

tools:
  bear_attach_file:
    rules:
      - action: allow
        rate_limit:
          max: 30
          window: 60

See the full Better Bear policy for all 34 tools.

// DETAILS

Tool Name bear_attach_file

Category Write

MCP Server Better Bear MCP Server

Risk Level Medium

// MORE BETTER BEAR TOOLS

Destructive bear_context_remove Destructive bear_context_remove_external Destructive bear_delete_tag Destructive bear_remove_tag Destructive bear_trash_note Execute bear_sync Write bear_add_tag Write bear_archive_note

View all 34 tools →

// WHAT CAN GO WRONG

Agents calling write-class tools like bear_attach_file have been implicated in these attack patterns. Read the full case and prevention policy for each:

Browse the full MCP Attack Database →

// OTHER WRITE TOOLS ACROSS MCP SERVERS

Other tools in the Write risk category across the catalogue. The same policy patterns (rate-limit, validate) apply to each.

AbraFlexi contact_create AbraFlexi contact_update AbraFlexi evidence_create AbraFlexi evidence_update AbraFlexi invoice_issued_update AbraFlexi invoice_received_create

// RELATED READING

// FAQ

What does the bear_attach_file tool do? +

Attach a file or image to an existing Bear note. The file is uploaded to iCloud and embedded in the note's markdown. Supports common image formats (jpg, png, gif, webp, heic) and other file types (pdf, zip, etc.). By default the attachment is appended to the end. Use 'after' or 'before' to place it relative to text in the note, or 'prepend' to put it right after the title.. It is categorised as a Write tool in the Better Bear MCP Server, which means it can create or modify data. Consider rate limits to prevent runaway writes.

How do I enforce a policy on bear_attach_file? +

Add a rule in your Intercept YAML policy under the tools section for bear_attach_file. You can allow, deny, rate-limit, or validate arguments. Then run Intercept as a proxy in front of the Better Bear MCP server.

What risk level is bear_attach_file? +

bear_attach_file is a Write tool with medium risk. Write tools should be rate-limited to prevent accidental bulk modifications.

Can I rate-limit bear_attach_file? +

Yes. Add a rate_limit block to the bear_attach_file rule in your Intercept policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block bear_attach_file completely? +

Set action: deny in the Intercept policy for bear_attach_file. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides bear_attach_file? +

bear_attach_file is provided by the Better Bear MCP server (better-bear). Intercept sits as a proxy in front of this server to enforce policies before tool calls reach the server.

bear_attach_file

Enforce policies on Better Bear