active_employee_export

从ERP系统导出在职员工Excel文件。必须先调用 brand_select 获取 brandId,再调用 branch_select 获取 branchId 和 cityCode。确认城市公司(必填)。入职时间范围和员工类型为选填。

Server Yjzf @yjzf/mcp-server-yjzf
Category Read
Risk class Low
Parameters 74 required

What active_employee_export does on Yjzf

AI agents call active_employee_export to retrieve information from Yjzf without modifying anything — typically the context-gathering step in research, monitoring, and reporting workflows, before the agent takes action elsewhere.

ParameterTypeRequiredDescription
brandId string Yes 品牌ID,必须通过 brand_select 工具获取,禁止自行编造
branchId string Yes 城市公司ID(即organId),必须通过 branch_select 工具获取,禁止自行编造
cityCode string Yes 城市编码,必须通过 branch_select 工具获取,禁止自行编造
branchName string Yes 城市公司名称(用于文件命名),必须通过 branch_select 工具获取,禁止自行编造
endEntryTm number 入职结束时间(毫秒时间戳,选填)。必须先调用 get_current_time 获取当前时间作为参考,再用 date_to_timestamp(endOfDay=true) 转换,严禁自行估算
startEntryTm number 入职开始时间(毫秒时间戳,选填)。必须先调用 get_current_time 获取当前时间作为参考,再用 date_to_timestamp 转换,严禁自行估算
affiliationType number 员工类型筛选(选填,单选)。必须向用户展示所有选项让用户选择:-1=无(筛选没有归属类型的员工), 1=平台, 2=直营门店, 3=加盟门店, 4=新房外渠。如果用户表示不筛选/全部/不限,则不传此参数

Parameters from the server's own tool schema.

Why active_employee_export needs a policy

This tool exports active employee data from an ERP system into an Excel file. It is a read/query operation that retrieves existing HR records. No data is created, modified, or deleted. However, it exports potentially sensitive personal employee information (PII), which elevates severity to medium despite being a read operation.

From the tool's definition 导出在职员工Excel文件 (export active employee Excel file) — retrieves/exports employee data from ERP system

Questions about active_employee_export

What does the active_employee_export tool do? +

从ERP系统导出在职员工Excel文件。必须先调用 brand_select 获取 brandId,再调用 branch_select 获取 branchId 和 cityCode。确认城市公司(必填)。入职时间范围和员工类型为选填。. It is categorised as a Read tool in the Yjzf MCP Server, which means it retrieves data without modifying state.

What parameters does active_employee_export accept? +

active_employee_export accepts 7 parameters: brandId, branchId, cityCode, branchName, endEntryTm, startEntryTm, affiliationType. Required: brandId, branchId, cityCode, branchName. The full parameter table on this page comes from the server's own tool schema.

How do I enforce a policy on active_employee_export? +

Register the Yjzf MCP server in PolicyLayer and add a rule for active_employee_export: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Yjzf. Nothing to install.

What risk level is active_employee_export? +

active_employee_export is a Read tool with low risk. Read-only tools are generally safe to allow by default.

Can I rate-limit active_employee_export? +

Yes. Add a rate_limit block to the active_employee_export rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block active_employee_export completely? +

Set action: deny in the PolicyLayer policy for active_employee_export. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides active_employee_export? +

active_employee_export is provided by the Yjzf MCP server (@yjzf/mcp-server-yjzf). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

// LOOK UP ANOTHER SERVER

Every MCP server has a record like this.

Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.

Teams ship this data inside their own products. See what a licence covers →

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.