// MCP TOOL REFERENCE
High Risk →

tronsave_internal_extend_delegates

Return extendable delegations for a receiver plus an extendData payload for the extension flow. Requires a logged-in MCP session created by the tronsave_login tool: include mcp-session-id: <sessionId> returned by tronsave_login on subsequent MCP requests. Internal tools never accept API keys via ...

Part of the Mcp server.

tronsave_internal_extend_delegates can trigger actions in Mcp, with no limits today. PolicyLayer puts allow, deny, and rate-limit rules on every call. Live in minutes.

SECURE MCP →

Free to start. No card required.

WHEN AGENTS USE THIS TOOL

AI agents invoke tronsave_internal_extend_delegates to trigger processes or run actions in Mcp. Execute operations can have side effects beyond the immediate call -- triggering builds, sending notifications, or starting workflows. Rate limits and argument validation are essential to prevent runaway execution.

tronsave_internal_extend_delegates can trigger processes with real-world consequences. An uncontrolled agent might start dozens of builds, send mass notifications, or kick off expensive compute jobs. PolicyLayer enforces rate limits and validates arguments to keep execution within safe bounds.

RECOMMENDED POLICY

Execute tools trigger processes. Rate-limit and validate arguments to prevent unintended side effects.

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "tronsave_internal_extend_delegates": {
      "limits": [
        {
          "counter": "tronsave_internal_extend_delegates_rate",
          "window": "minute",
          "max": 10,
          "scope": "grant"
        }
      ]
    }
  }
}

See the full Mcp policy for all 29 tools.

Get this rule live on your own Mcp server in minutes. PolicyLayer enforces it on every call, before it runs.

ENFORCE ON MY MCP →

MORE MCP TOOLS

Destructive tronsave_cancel_order Destructive tronsave_delete_auto_buy_setting Destructive tronsave_revoke_api_key Execute tronsave_estimate_buy_resource Execute tronsave_sell_order_manual Write tronsave_create_order Write tronsave_generate_api_key Write tronsave_internal_create_extend_request

View all 29 tools →

WHAT CAN GO WRONG

These attack patterns abuse exactly the kind of access tronsave_internal_extend_delegates gives an agent. Each links to the full case and the policy that stops it:

Browse the full MCP Attack Database →

Every attack above starts with a tool call. PolicyLayer checks each one against your policy first, so tronsave_internal_extend_delegates only ever does what you allow.

SECURE MCP →

OTHER EXECUTE TOOLS

Other execute tools across the catalogue. The same approach applies to each: rate-limit and validate the arguments.

Atv build_stake_tx Atv build_unstake_tx Acdp start_local Pentagonal pentagonal_audit Pentagonal pentagonal_compile ACR — Agent Composition Records orient_me

RELATED READING

FAQ

What does the tronsave_internal_extend_delegates tool do? +

Return extendable delegations for a receiver plus an extendData payload for the extension flow. Requires a logged-in MCP session created by the tronsave_login tool: include mcp-session-id: <sessionId> returned by tronsave_login on subsequent MCP requests. Internal tools never accept API keys via tool arguments; signature sessions resolve the latest internal API key on demand, while api-key sessions reuse the validated key from login. Use as STEP 1 before tronsave_internal_create_extend_request when the user wants to extend existing delegation time. Read-only; does not submit anything. FRESHNESS: pricing/availability change within seconds — run immediately before extending and pass the returned extendData unchanged.. It is categorised as a Execute tool in the Mcp MCP Server, which means it can trigger actions or run processes. Use rate limits and argument validation.

How do I enforce a policy on tronsave_internal_extend_delegates? +

Register the MCP server in PolicyLayer and add a rule for tronsave_internal_extend_delegates: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Mcp. Nothing to install.

What risk level is tronsave_internal_extend_delegates? +

tronsave_internal_extend_delegates is a Execute tool with high risk. Execute tools should be rate-limited and have argument validation enabled.

Can I rate-limit tronsave_internal_extend_delegates? +

Yes. Add a rate_limit block to the tronsave_internal_extend_delegates rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block tronsave_internal_extend_delegates completely? +

Set action: deny in the PolicyLayer policy for tronsave_internal_extend_delegates. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides tronsave_internal_extend_delegates? +

tronsave_internal_extend_delegates is provided by the MCP server (https://mcp.tronsave.io/mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Mcp tool call.

Deterministic rules across all 29 Mcp tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

SECURE MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.