PrismPrism
Docs
Reference

MCP permissions and scopes

Use scoped permissions so each AI client can access only the Prism workflows it needs.

Prism MCP should be treated as a sensitive data access surface because it connects external AI tools to the user's research system.

Workflow

Primary steps

  1. 1Start with read-only research access.
  2. 2Add write scopes only for trusted workflows and only when the deployment exposes them.
  3. 3Revoke or edit clients from the Prism MCP dashboard.

Default posture

Start with read-only scopes for search, retrieval, thesis context, files, artifacts, drafts, posts, and recent activity.

Write scopes are hidden unless the server-side PRISM_MCP_WRITE_TOOLS_ENABLED flag is enabled and the user explicitly authorizes the scope.

Publishing boundary

MCP write tools can support private draft, library, graph, portfolio, and thesis proposal workflows when enabled. They cannot publish, schedule, delete, send subscriber emails, or place trades.