// MCP TOOL REFERENCE

transfer

Transfer ERC-20 tokens between agents or to an external wallet. A 1% platform fee applies.

Handles credentials or secrets (token)

Part of the Ai Agent Bank MCP server. Enforce policies on this tool with Intercept, the open-source MCP proxy.

ai-agent-bank-mcp-server Financial Risk 5/5

// WHEN AI AGENTS USE THIS TOOL

AI agents use transfer to initiate financial transactions through Ai Agent Bank. Financial operations involve real money and are irreversible once processed. Intercept blocks financial tools by default, requiring explicit human approval with transaction-level limits to prevent unauthorised spending.

// WHY ENFORCE A POLICY ON TRANSFER

transfer moves real money. Without a policy, an autonomous agent could initiate transactions that drain accounts or exceed budgets. Intercept blocks financial tools by default, requiring human-in-the-loop approval with configurable spending limits per transaction and per time window.

// RECOMMENDED POLICY

Financial tools involve real money. Block by default and require explicit human approval before enabling.

io-github-wirternow-agent-bank.yaml

tools:
  transfer:
    rules:
      - action: deny
        reason: "Requires human approval"

See the full Ai Agent Bank policy for all 14 tools.

// DETAILS

Tool Name transfer

Category Financial

MCP Server Ai Agent Bank MCP Server

Risk Level Critical

// MORE AI AGENT BANK TOOLS

Write accept_swap Write assess_credit Write borrow Write borrow_capability Write concierge_chat Write create_job Write create_swap Write manage_webhooks

View all 14 tools →

// WHAT CAN GO WRONG

Agents calling financial-class tools like transfer have been implicated in these attack patterns. Read the full case and prevention policy for each:

Browse the full MCP Attack Database →

// OTHER FINANCIAL TOOLS ACROSS MCP SERVERS

Other tools in the Financial risk category across the catalogue. The same policy patterns (deny, require_approval) apply to each.

AbraFlexi bank_transaction_create AbraFlexi invoice_issued_create AgentPact agentpact.request_refund Wise cancel_transfer Wise create_transfer Wise fund_transfer

// IN CONTEXT OF CRITICAL RISK

transfer is one of the critical-risk operations in Ai Agent Bank. For the full severity-focused view — only the critical-risk tools with their recommended policies — see the breakdown for this server, or browse all critical-risk tools across every MCP server.

// RELATED READING

// FAQ

What does the transfer tool do? +

Transfer ERC-20 tokens between agents or to an external wallet. A 1% platform fee applies.. It is categorised as a Financial tool in the Ai Agent Bank MCP Server, which means it involves financial transactions. Block by default and require explicit approval.

How do I enforce a policy on transfer? +

Add a rule in your Intercept YAML policy under the tools section for transfer. You can allow, deny, rate-limit, or validate arguments. Then run Intercept as a proxy in front of the Ai Agent Bank MCP server.

What risk level is transfer? +

transfer is a Financial tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.

Can I rate-limit transfer? +

Yes. Add a rate_limit block to the transfer rule in your Intercept policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block transfer completely? +

Set action: deny in the Intercept policy for transfer. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides transfer? +

transfer is provided by the Ai Agent Bank MCP server (ai-agent-bank-mcp-server). Intercept sits as a proxy in front of this server to enforce policies before tool calls reach the server.

transfer

Enforce policies on Ai Agent Bank