Unstake (undelegate) 0G tokens from a validator. Burns delegation shares and starts 21-day unbonding period. Tokens automatically sent to withdrawal address after unbonding. Requires withdrawal fee payment. Supports partial or full unstaking (
AI agents use unstake_tokens to commit financial operations through 0g Chain — usually the final step of a payment, billing, or trading workflow. A call moves real money.
This tool commits a financial operation on a blockchain: it burns delegation shares, initiates an irreversible 21-day unbonding period, requires fee payment, and triggers automatic token transfer to a withdrawal address. It moves staked assets and commits financial obligations, placing it firmly in the Financial category. The irreversible unbonding period and fee payment raise severity to high.
From the tool's definition Unstake (undelegate) 0G tokens from a validator. Burns delegation shares and starts 21-day unbonding period. Tokens automatically sent to withdrawal address after unbonding. Requires withdrawal fee payment.
Attacks that exploit this kind of access
Unstake (undelegate) 0G tokens from a validator. Burns delegation shares and starts 21-day unbonding period. Tokens automatically sent to withdrawal address after unbonding. Requires withdrawal fee payment. Supports partial or full unstaking (. It is categorised as a Financial tool in the 0g Chain MCP Server, which means it involves financial transactions. Block by default and require explicit approval.
Register the 0g Chain MCP server in PolicyLayer and add a rule for unstake_tokens: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches 0g Chain. Nothing to install.
unstake_tokens is a Financial tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.
Yes. Add a rate_limit block to the unstake_tokens rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for unstake_tokens. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
unstake_tokens is provided by the 0g Chain MCP server (tairon-ai/0g-chain-mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
Every MCP server has a record like this.
Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.
Teams ship this data inside their own products. See what a licence covers →