35 tools from the Salesforce MCP Server, categorised by risk level.
View the Salesforce policy →checkCommitStatus Check commit status in DevOps Center 2/5 describe_code_analyzer_rule Describe a specific Code Analyser rule 2/5 enrich_metadata Enrich metadata with additional information 2/5 get_mobile_lwc_offline_analysis Get mobile LWC offline analysis 2/5 get_mobile_lwc_offline_guidance Get mobile LWC offline guidance 2/5 get_username Get the current Salesforce username 2/5 list_all_orgs List all connected Salesforce organisations 2/5 list_code_analyzer_rules List available Code Analyser rules 2/5 list_tools List available MCP tools 2/5 query_code_analyzer_results Query Code Analyser results 2/5 retrieve_metadata Retrieve metadata from a Salesforce org 2/5 run_soql_query Run a SOQL query against a Salesforce org 3/5 scan-apex-antipatterns Scan Apex code for anti-patterns 2/5 sfDevopsDetectConflict Detect conflicts in DevOps Center 2/5 sfDevopsListProjects List DevOps Center projects 2/5 sfDevopsListWorkItems List DevOps Center work items 2/5 assign_permission_set Assign a permission set to a user 5/5 create_mobile_lwc_native_capabilities Create mobile LWC native capabilities 4/5 create_org_snapshot Create an org snapshot 3/5 create_scratch_org Create a new Salesforce scratch org 4/5 createPullRequest Create a pull request in DevOps Center 4/5 enable_tools Enable additional MCP tools 4/5 sfDevopsCheckoutWorkItem Check out a DevOps Center work item 3/5 sfDevopsCommitWorkItem Commit a DevOps Center work item 4/5 sfDevopsCreateWorkItem Create a DevOps Center work item 3/5 sfDevopsResolveConflict Resolve a conflict in DevOps Center 5/5 sfDevopsUpdateWorkItemStatus Update a DevOps Center work item status 3/5 deploy_metadata Deploy metadata to a Salesforce org 5/5 open_org Open a Salesforce org in the browser 3/5 resume_tool_operation Resume a paused tool operation 4/5 run_agent_test Run agent tests in a Salesforce org 3/5 run_apex_test Run Apex tests in a Salesforce org 3/5 run_code_analyzer Run Code Analyser on source code 3/5 sfDevopsPromoteWorkItem Promote a DevOps Center work item 5/5 The Salesforce MCP server exposes 35 tools across 4 categories: Read, Write, Destructive, Execute.
Use Intercept, the open-source MCP proxy. Write YAML rules for each tool — rate limits, argument validation, or deny rules — then run Intercept in front of the Salesforce server.
Salesforce tools are categorised as Read (16), Write (11), Destructive (1), Execute (7). Each category has a recommended default policy.
Open source. One binary. Zero dependencies.
npx -y @policylayer/intercept