Banked's MCP server exposes a set of tools that AI agents can use to interact with the Payments API.
Security Recommendation: We recommend enabling human confirmation for all tool executions, especially for operations that create payments or process refunds. Exercise caution when using Banked MCP alongside other MCP servers to mitigate prompt injection risks.
Tools
| Tool | Description | Default | Related API |
|---|---|---|---|
payments.create | Create a new payment session with checkout URL | Enabled | Create Payment Session |
payments.search | Search and retrieve payments by ID, reference, or date range | Enabled | Get Payment Session |
payments.refund | Process a refund using a mandate token | Enabled | Refunds Guide |
Tool Filtering
You can restrict which tools are available by adding the X-Allowed-Tools header to your MCP server configuration. This is useful for limiting access to specific operations.
The absence of X-Allowed-Tools header will use the default tool list as specified above. More tools will be added in future and may be enabled by default so it's advised to use this header.
Example:
X-Allowed-Tools: payments.create,payments.search
This configuration would only allow payments.create and payments.search tools, preventing access to payments.refund.
More Tools Coming
This is just the beginning. We're continuously expanding our MCP toolset to support more payment operations and workflows.
Have a specific use case or need additional tools? Contact support@banked.com to share your requirements.