List all $addresses the agent can serve (holds tokens with serving rights). Shows serve history and revenue earned per token. Args: - response_format (
AI agents call path402_servable to retrieve information from Path402 — Tokenised Web Content for AI Agents without modifying anything — typically the context-gathering step in research, monitoring, and reporting workflows, before the agent takes action elsewhere.
This tool retrieves and queries existing data about serving rights, history, and revenue. It performs no side effects, does not execute code or commands, and does not modify or delete data. It is purely informational in nature, making it a Read operation with low severity.
From the tool's definition Tool lists addresses and historical data ('List all $addresses the agent can serve', 'Shows serve history and revenue earned per token'). No modification, deletion, or execution of external operations occurs.
Attacks that exploit this kind of access
List all $addresses the agent can serve (holds tokens with serving rights). Shows serve history and revenue earned per token. Args: - response_format (. It is categorised as a Read tool in the Path402 — Tokenised Web Content for AI Agents MCP Server, which means it retrieves data without modifying state.
Register the Path402 — Tokenised Web Content for AI Agents MCP server in PolicyLayer and add a rule for path402_servable: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Path402 — Tokenised Web Content for AI Agents. Nothing to install.
path402_servable is a Read tool with low risk. Read-only tools are generally safe to allow by default.
Yes. Add a rate_limit block to the path402_servable rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for path402_servable. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
path402_servable is provided by the Path402 — Tokenised Web Content for AI Agents MCP server (path402). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
path402_servable is one line of Path402 — Tokenised Web Content for AI Agents's registry record.
The record carries the whole server: verified identity, auth posture, risk grade, every tool classified, recommended policy — re-checked continuously.
Teams ship this data inside their own products. See what a licence covers →