// MCP TOOL REFERENCE

EXECUTOR TOOLS

29 tools from the Executor MCP Server, categorised by risk level.

// ALL 29 EXECUTOR TOOLS

READ 12 tools

Read connections.list List saved connections (the credential for one integration). Never returns the credential value. Optionally... Read getIntegration Inspect an existing GraphQL integration, including endpoint, static headers/query params, and auth template... Read getServer Inspect a registered MCP integration, including transport, endpoint/command, and auth template. Use this be... Read hello Greets a person Read integrations.detect Given a URL, ask every plugin whether it recognizes it, returning best-confidence matches so the UI can pre... Read list A read-only tool Read listVaults List available 1Password vaults before configuring the provider. For service-account auth, pass the service... Read oauth.probe Discover OAuth authorization-server metadata from an issuer or protected-resource URL so client registratio... Read previewSpec Preview an OpenAPI document before adding it as an integration. Call this first when the user provides a sp... Read providers.items Browse a credential provider Read simple_echo Echoes a value without elicitation Read structured_echo Returns text plus structured data

WRITE 6 tools

Write oauth.clients.create Register or replace an owner-scoped OAuth client from explicit client credentials. Use grant Write connections.create Low-level create or replace for a saved connection from provider item references. For normal API keys/token... Write connections.createHandoff Return a browser URL that opens the Add account flow for one integration. Use this for API keys/tokens so t... Write oauth.clients.registerDynamic Register an OAuth client through RFC 7591 Dynamic Client Registration and save the minted client for later Write policies.create Create a tool policy. Write policies.update Update a tool policy

DESTRUCTIVE 6 tools

Destructive connections.remove Remove a saved connection and its produced tools by owner, integration, and connection name. Destructive delete A destructive tool Destructive delete_titled A destructive tool with a title annotation Destructive oauth.cancel Cancel an in-flight OAuth authorization-code session by state after the user abandons the flow. Destructive oauth.clients.remove Remove an owner-scoped OAuth client by owner and slug. Existing connections are not cascaded. Destructive policies.remove Remove a tool policy by id + owner.

EXECUTE 3 tools

Execute connections.refresh Re-run an integration Execute oauth.start Start OAuth through a registered client to mint a connection for an integration. Execute probeEndpoint Probe a remote MCP endpoint before adding it. If the result requires OAuth, run the core OAuth handoff (

OTHER 2 tools

Other gated_echo Asks for approval before echoing a value Other ping An unannotated tool

// FAQ

How many tools does the Executor MCP server have? +

The Executor MCP server exposes 29 tools across 5 categories: Read, Write, Destructive, Execute, Other.

How do I enforce policies on Executor tools? +

Route the Executor server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Executor tools fall into? +

Executor tools are categorised as Read (12), Write (6), Destructive (6), Execute (3), Other (2). Each category has a recommended default policy.

Enforce policy on every Executor tool call.

Deterministic rules across all 29 Executor tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

GOVERN EXECUTOR →

Free to start. No card required.

42,500+ MCP servers and 110,000+ tools scanned and risk-classified.