cast_url

Play a direct audio stream URL on the KEF via Google Cast.

Server Kef nqrwhal/kef-mcp
Category Execute
Risk class High
Parameters 00 required

What cast_url does on Kef

AI agents invoke cast_url to trigger actions in Kef. What it does depends on the arguments the agent supplies, and its effects often reach beyond the immediate call — builds kicked off, notifications sent, workflows started.

Why cast_url needs a policy

This tool initiates an external operation (casting audio to a physical speaker device) whose effects depend on the URL argument provided. It's not a simple read or write to a data store, but an execution of a media streaming action on external hardware. Misuse could involve playing arbitrary or malicious audio streams on the device.

From the tool's definition "Play a direct audio stream URL on the KEF via Google Cast" — triggers external playback operation on a physical device via Google Cast protocol

Questions about cast_url

What does the cast_url tool do? +

Play a direct audio stream URL on the KEF via Google Cast. It is categorised as a Execute tool in the Kef MCP Server, which means it can trigger actions or run processes. Use rate limits and argument validation.

How do I enforce a policy on cast_url? +

Register the Kef MCP server in PolicyLayer and add a rule for cast_url: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Kef. Nothing to install.

What risk level is cast_url? +

cast_url is a Execute tool with high risk. Execute tools should be rate-limited and have argument validation enabled.

Can I rate-limit cast_url? +

Yes. Add a rate_limit block to the cast_url rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block cast_url completely? +

Set action: deny in the PolicyLayer policy for cast_url. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides cast_url? +

cast_url is provided by the Kef MCP server (nqrwhal/kef-mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

// LOOK UP ANOTHER SERVER

Every MCP server has a record like this.

Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.

Teams ship this data inside their own products. See what a licence covers →

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.