Mcp Hilton
UnverifiedREPOmarkswendsen-code/mcp-hilton
F
Catalogue entry updated 3 days ago
Auth postureNot probedno remote endpoint probed yet
Tools161 Financial · 2 Destructive · 1 Execute · 3 Write · 9 Read
Worst categoryFinancialgrade tracks the peak, not the average
Capability mix
Financial 1Destructive 2Execute 1Write 3Read 9
What it can reach
Ingests untrusted inputTouches secretsReaches networkRuns codeTouches filesChanges permissionsSends external commsPersistsDeletes dataMoves money
Money-movingCan move funds or commit obligations — treat every call as consequential.
Change history
No changes recorded since first scan. Watched servers surface a diff within the hour.
Recommended policy
checkoutrequire approval
cancel_reservationdeny
hilton_loginrequire approval
add_extrasrate limit
Read-only toolsallow
Full policy breakdown with enforcement rules →