// MCP TOOL REFERENCE
Medium Risk

vl_update_saved_object

Update a single Kibana saved object by type and ID. This performs a partial update - only the specified attributes will be changed, other attributes remain unchanged. Supports all saved object types (dashboard, visualization, index-pattern, search, config, lens, map, tag, canvas-workpad, canvas-e...

Risk signalsHigh parameter count (10 properties)

Part of the Kibana server.

vl_update_saved_object can modify Kibana data, with no limits today. PolicyLayer puts allow, deny, and rate-limit rules on every call. Live in minutes.

SECURE KIBANA →

Free to start. No card required.

WHEN AGENTS USE THIS TOOL

AI agents use vl_update_saved_object to create or modify resources in Kibana. Write operations carry medium risk because an autonomous agent could trigger bulk unintended modifications. Rate limits prevent a single agent session from making hundreds of changes in rapid succession. Argument validation ensures the agent passes expected values.

Without a policy, an AI agent could call vl_update_saved_object repeatedly, creating or modifying resources faster than any human could review. PolicyLayer's rate limiting ensures write operations happen at a controlled pace, and argument validation catches malformed or unexpected inputs before they reach Kibana.

RECOMMENDED POLICY

Write tools can modify data. A rate limit prevents runaway bulk operations from AI agents.

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "vl_update_saved_object": {
      "limits": [
        {
          "counter": "vl_update_saved_object_rate",
          "window": "minute",
          "max": 30,
          "scope": "grant"
        }
      ]
    }
  }
}

See the full Kibana policy for all 16 tools.

Get this rule live on your own Kibana server in minutes. PolicyLayer enforces it on every call, before it runs.

ENFORCE ON MY KIBANA →

MORE KIBANA TOOLS

Destructive vl_bulk_delete_saved_objects Execute execute_kb_api Write vl_bulk_update_saved_objects Write vl_create_saved_object Read analyze_deletion_impact Read analyze_object_dependencies Read check_dashboard_health Read get_available_spaces

View all 16 tools →

WHAT CAN GO WRONG

These attack patterns abuse exactly the kind of access vl_update_saved_object gives an agent. Each links to the full case and the policy that stops it:

Browse the full MCP Attack Database →

Every attack above starts with a tool call. PolicyLayer checks each one against your policy first, so vl_update_saved_object only ever does what you allow.

SECURE KIBANA →

OTHER WRITE TOOLS

Other write tools across the catalogue. The same approach applies to each: rate-limit and validate the arguments.

Firecrawl Web Scraping Server firecrawl_generate_llmstxt AbraFlexi contact_create AbraFlexi contact_update AbraFlexi evidence_create AbraFlexi evidence_update AbraFlexi invoice_issued_update

RELATED READING

FAQ

What does the vl_update_saved_object tool do? +

Update a single Kibana saved object by type and ID. This performs a partial update - only the specified attributes will be changed, other attributes remain unchanged. Supports all saved object types (dashboard, visualization, index-pattern, search, config, lens, map, tag, canvas-workpad, canvas-element, etc.). IMPORTANT: Use version parameter for optimistic concurrency control to prevent conflicts.. It is categorised as a Write tool in the Kibana MCP Server, which means it can create or modify data. Consider rate limits to prevent runaway writes.

How do I enforce a policy on vl_update_saved_object? +

Register the Kibana MCP server in PolicyLayer and add a rule for vl_update_saved_object: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Kibana. Nothing to install.

What risk level is vl_update_saved_object? +

vl_update_saved_object is a Write tool with medium risk. Write tools should be rate-limited to prevent accidental bulk modifications.

Can I rate-limit vl_update_saved_object? +

Yes. Add a rate_limit block to the vl_update_saved_object rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block vl_update_saved_object completely? +

Set action: deny in the PolicyLayer policy for vl_update_saved_object. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides vl_update_saved_object? +

vl_update_saved_object is provided by the Kibana MCP server (TocharianOU/mcp-server-kibana). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Kibana tool call.

Deterministic rules across all 16 Kibana tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

SECURE KIBANA →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.