// MCP TOOL REFERENCE

VAULT MCP TOOLS

10 tools from the Vault MCP MCP Server, categorised by risk level.

View the Vault MCP policy → Token cost: 1,095 tokens →
// ALL 10 VAULT MCP TOOLS
READ 5 tools
Read vault_api_request Make an API request with stored credentials. The API key is injected automatically — the bot never sees it.... Read vault_check Verify a credential is valid and ready to use. Checks existence, active status, required fields, and expira... Read vault_list List all available credentials in the vault. Returns only site IDs and types — no secrets. Read vault_status Check the status of a specific credential: active/inactive, last used, audit count. Read vault_templates List available credential templates for popular services. Templates auto-fill login URLs and CSS selectors.
WRITE 4 tools
Write vault_add Securely add a new credential to the vault. Opens a browser form where the user enters their password direc... Write vault_import Import API keys from a .env file. Each key is stored as an encrypted api_key credential. The .env values pa... Write vault_login Log into a website using stored credentials. The bot never sees the password — Vault fills the login form v... Write vault_update Update an existing credential. Opens a browser form to enter new password/API key — the secret NEVER passes...
DESTRUCTIVE 1 tools
Destructive vault_remove Remove a credential from the vault permanently.
// RUNNING THIS SERVER

The managed route: connect Vault MCP through the PolicyLayer gateway — every tool call above is checked against your policy before it runs, with a full audit log.

DIRECT INSTALL (UNMANAGED) npx -y chillai-vault-mcp
// FAQ
How many tools does the Vault MCP MCP server have? +

The Vault MCP MCP server exposes 10 tools across 3 categories: Read, Write, Destructive.

How do I enforce policies on Vault MCP tools? +

Route the Vault MCP server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard — they are enforced on every call before it reaches the server.

What risk categories do Vault MCP tools fall into? +

Vault MCP tools are categorised as Read (5), Write (4), Destructive (1). Each category has a recommended default policy.

Let agents act without letting them run wild.

Route your MCP servers through PolicyLayer and every tool call is checked against your policy before it runs — allow, deny, or require approval. Per-identity grants. Full audit log. Live in minutes.

SECURE YOUR MCP →

Free to start. No card required.

4,600+ MCP servers and 31,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.