search_within

Semantic search INSIDE a fetched record. Pass the text you already pulled (e.g. a SEC 10-K body, an article, a long tool result) plus a natural-language query; get back the top-N passages with character offsets and similarity scores. Use when the record is too big to cram into the prompt — search...

Server Expression Atlas https://gateway.pipeworx.io/expression-atlas/mcp
Category Read
Risk class Low
Parameters 32 required

What search_within does on Expression Atlas

AI agents call search_within to retrieve information from Expression Atlas without modifying anything — typically the context-gathering step in research, monitoring, and reporting workflows, before the agent takes action elsewhere.

ParameterTypeRequiredDescription
text string Yes The document text to search inside (max ~200K chars).
limit number Max passages to return (1-20, default 5).
query string Yes Natural-language query — what passages do you want? E.g. "supply-chain risk", "fiscal year 2024 revenue", "drug interactions with warfarin".

Parameters from the server's own tool schema.

Why search_within needs a policy

search_within performs read-only passage retrieval and ranking from already-fetched documents using semantic similarity. It retrieves data (passages with offsets and scores) with no side effects, reversible modifications, code execution, financial transactions, or destructive operations. This is a pure Read operation with minimal security risk.

From the tool's definition Semantic search INSIDE a fetched record...get back the top-N passages. Saves context, returns only the passages that matter. No modification, deletion, or execution of external code implied.

Risk signalsAccepts freeform code/query input (query) · Bulk/mass operation — affects multiple targets

Questions about search_within

What does the search_within tool do? +

Semantic search INSIDE a fetched record. Pass the text you already pulled (e.g. a SEC 10-K body, an article, a long tool result) plus a natural-language query; get back the top-N passages with character offsets and similarity scores. Use when the record is too big to cram into the prompt — search_within saves context, returns only the passages that matter, and every passage carries an offset so the agent can verify a verbatim quote. Pairs with ask_pipeworx_grounded: fetch with the gateway, ground over the relevant passages instead of the whole document. BGE-base-en embeddings + cosine over 500-char overlapping windows; cap is 200K chars (longer inputs are truncated and flagged). It is categorised as a Read tool in the Expression Atlas MCP Server, which means it retrieves data without modifying state.

What parameters does search_within accept? +

search_within accepts 3 parameters: text, limit, query. Required: text, query. The full parameter table on this page comes from the server's own tool schema.

How do I enforce a policy on search_within? +

Register the Expression Atlas MCP server in PolicyLayer and add a rule for search_within: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Expression Atlas. Nothing to install.

What risk level is search_within? +

search_within is a Read tool with low risk. Read-only tools are generally safe to allow by default.

Can I rate-limit search_within? +

Yes. Add a rate_limit block to the search_within rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block search_within completely? +

Set action: deny in the PolicyLayer policy for search_within. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides search_within? +

search_within is provided by the Expression Atlas MCP server (https://gateway.pipeworx.io/expression-atlas/mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

// LOOK UP ANOTHER SERVER

Every MCP server has a record like this.

Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.

Teams ship this data inside their own products. See what a licence covers →

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.