Tool row
Server: github-mcp. Tool: create_pull_request. Action: write. Credential: user-scoped OAuth. Approval: required before open PR.
- Owner
- Environment
- Data touched
- Rollback path
Resource
A worksheet for listing MCP servers, tools, OAuth scopes, tokens, actions, approval gates, and logs so teams can see blast radius clearly.
What you receive
Work product
The worksheet is designed to be filled out directly by platform, security, and engineering owners before a tool-use review.
Server: github-mcp. Tool: create_pull_request. Action: write. Credential: user-scoped OAuth. Approval: required before open PR.
Any send, delete, deploy, merge, payment, permission, or customer-visible action must have server-side policy and an audit record.
Record prompt, tool name, parameters, result, approver, denied action, and emergency disablement path.
01
Next step