MCP TOOLS

145 tools. Fourteen modules. Every call gated.

An agent is only as useful as the tools it can reach — and only as safe as the checks standing between it and those tools.

ARCHITECTURE

HOW IT WORKS.

A tool call enters on the left, gets classified against the risk allowlist, and either runs or blocks. Nothing reaches your filesystem or shell without passing the gate.

TOOL CALL
REGISTRY
GATEKEEPER
EXECUTION
DEEP DIVE

DEEP DIVE.

The 14 modules roll up into four flavor groups. Pick one to see how it is gated and what it exposes.

read, write, append, mkdir, stat, glob, delete — the full set of filesystem primitives, scoped to an allowlist of paths. Inside your project directory: GREEN. Elsewhere on disk: YELLOW or ORANGE. System directories: RED. The allowlist is configurable per session.
LIVE DEMO

LIVE DEMO.

Here is a read-only filesystem glob flowing through the Planner, Gatekeeper, and Executor.

mcp-tools.call
RECEIPTS

RECEIPTS.

145
TOOLS
across modules
14
MODULES
fs · shell · web · …
4
RISK LEVELS
per tool
500+
TOOL TESTS
unit + integration
CROSS-LINKS

WHERE NEXT.

PGE Trinity

Three agents. One loop. Zero silent failures.

Computer Use

Screenshot, click, type — drive any app on the desktop.

Skills

Built-in, generated, community — all local, all inspectable.