// MCP TOOL REFERENCE
Low Risk

done

Call this tool when the task is complete.

How to control done ↓

WHAT DONE ON FAST PLAYWRIGHT MCP DOES

AI agents call done as a supporting operation in Fast Playwright MCP workflows.

THE RISK

Low Risk

This tool appears to be a lifecycle/signaling tool that marks a task as done. It doesn't read, write, execute, delete, or move money. It's a control-flow signal with no described data operations, placing it in 'Other'. Confidence is moderate since the description is minimal and uninformative about any underlying effects.

From the tool's definition 'Call this tool when the task is complete.' — signals task completion with no described side effects.

Documented attack patterns abuse exactly the kind of access done gives an agent:

HOW TO CONTROL DONE

PolicyLayer is an MCP gateway — it sits between your AI agents and Fast Playwright MCP, and nothing reaches the server without passing your rules. This is the rule we recommend for done:

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "done": {
      "limits": [
        {
          "counter": "done_rate",
          "window": "minute",
          "max": 60,
          "scope": "grant"
        }
      ]
    }
  }
}

done gets a rate cap, and everything else on the server is denied unless you say otherwise.

  1. Create a free account and register Fast Playwright MCP — nothing to install.
  2. Add this policy — paste it, or build it visually.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
SET A RULE FOR THIS TOOL →

Free to start. No card required.

EXPLORE

More Fast Playwright MCP tools

Execute browser_batch_execute Execute multiple browser actions in sequence. PREFER over individual tools for 2+ operatio Execute browser_navigate Navigate to a URL Execute browser_navigate_back Go back to previous page Execute browser_navigate_forward Go forward to next page Execute browser_tab_new Open a new tab Execute browser_wait_for Wait for text to appear or disappear or a specified time to pass Execute browser_click Perform click on web page Execute browser_drag Perform drag and drop between two elements

All 34 Fast Playwright MCP tools →

Other tools on other servers

Computer Control MCP wait_milliseconds AgentTrust — Identity & Trust for A2A Agents agenttrust_escalate MLP Tax Computation Engine k1_basis_compute Anirbanbasu Pymcp DDGS_PROXY

Go deeper

FAQ

What does the done tool do? +

Call this tool when the task is complete. It is categorised as a Other tool in the Fast Playwright MCP MCP Server, which means it performs auxiliary operations.

How do I enforce a policy on done? +

Register the Fast Playwright MCP server in PolicyLayer and add a rule for done: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Fast Playwright MCP. Nothing to install.

What risk level is done? +

done is a Other tool with low risk. Read-only tools are generally safe to allow by default.

Can I rate-limit done? +

Yes. Add a rate_limit block to the done rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block done completely? +

Set action: deny in the PolicyLayer policy for done. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides done? +

done is provided by the Fast Playwright MCP server (tontoko/fast-playwright-mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Fast Playwright MCP tool call.

Deterministic rules across all 34 Fast Playwright MCP tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

GOVERN FAST PLAYWRIGHT →

Free to start. No card required.

34 Fast Playwright MCP tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.