// MCP TOOL REFERENCE
Low Risk

read_document

Read various document formats (DOCX, DOC, TXT, MD, HTML, etc.)

How to control read_document ↓

WHAT READ_DOCUMENT ON DOC OPS DOES

AI agents call read_document to retrieve information from Doc Ops without modifying anything — typically the context-gathering step in research, monitoring, and reporting workflows, before the agent takes action elsewhere.

THE RISK

Low Risk

This tool retrieves and queries document content without side effects. It performs a passive read operation across multiple document format types. No data is created, modified, deleted, or executed. The lowest severity is appropriate since document reading has minimal security impact unless the documents themselves contain highly sensitive information—but that is a data sensitivity issue, not a tool capability issue.

From the tool's definition Tool name 'read_document' and description explicitly states 'Read various document formats (DOCX, DOC, TXT, MD, HTML, etc.)' with no modification, deletion, or execution capability mentioned.

Documented attack patterns abuse exactly the kind of access read_document gives an agent:

HOW TO CONTROL READ_DOCUMENT

PolicyLayer is an MCP gateway — it sits between your AI agents and Doc Ops, and nothing reaches the server without passing your rules. This is the rule we recommend for read_document:

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "read_document": {}
  }
}

read_document is read-only, so it stays allowed — but everything else on the server is denied unless you say otherwise.

  1. Create a free account and register Doc Ops — nothing to install.
  2. Add this policy — paste it, or build it visually.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
CAP THIS TOOL →

Free to start. No card required.

EXPLORE

More Doc Ops tools

Execute process_pdf_post_conversion 🔧 PDF Post-Processing Unified Tool - ⚠️ IMPORTANT: This is a necessary follow-up step for Write add_qrcode Add QR code to PDF documents with friendly text below. QR code must be an image file (PNG/ Write add_watermark Add watermarks to PDF documents. Supports both text and image watermarks. Priority: user t Write convert_document Convert documents between formats with enhanced style preservation. Output directory is co Write convert_docx_to_pdf Enhanced DOCX to PDF conversion with perfect Word style replication and Playwright integra Write convert_html_to_markdown Enhanced HTML to Markdown conversion with style preservation. Converts HTML files to clean Write convert_markdown_to_docx Enhanced Markdown to DOCX conversion with professional styling and theme support. Preserve Write convert_markdown_to_html Enhanced Markdown to HTML conversion with beautiful styling and theme support. Supports Gi

All 13 Doc Ops tools →

Read tools on other servers

Frida Game Hacking MCP check_installation Procmon analyze_pe MegaMemory get_concept WireMCP analyze_pcap

Go deeper

FAQ

What does the read_document tool do? +

Read various document formats (DOCX, DOC, TXT, MD, HTML, etc.). It is categorised as a Read tool in the Doc Ops MCP Server, which means it retrieves data without modifying state.

How do I enforce a policy on read_document? +

Register the Doc Ops MCP server in PolicyLayer and add a rule for read_document: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Doc Ops. Nothing to install.

What risk level is read_document? +

read_document is a Read tool with low risk. Read-only tools are generally safe to allow by default.

Can I rate-limit read_document? +

Yes. Add a rate_limit block to the read_document rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block read_document completely? +

Set action: deny in the PolicyLayer policy for read_document. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides read_document? +

read_document is provided by the Doc Ops MCP server (tele-ai/doc-ops-mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Doc Ops tool call.

Deterministic rules across all 13 Doc Ops tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

GOVERN DOC OPS →

Free to start. No card required.

13 Doc Ops tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.