Ghostvault exposes 42 MCP tools, all prefixed gv_*. This page is the complete
reference, grouped by category.
Read-only vs. mutating
Tools annotated (read-only) only read state. Tools annotated (destructive)
mutate or delete data. Tools annotated (open-world) reach out to the web.
| Tool |
Description |
Key params |
gv_list_accounts |
List all managed accounts and the active one. (read-only) |
— |
gv_create_account |
Create a slot with locked fingerprint + advanced config. (destructive) |
name, provider, os, device_profile, device_config, preset, humanize, proxy |
gv_update_account_config |
Update advanced fingerprint config of an existing account. (destructive) |
account_id, device_profile, device_config, reset_keys, reset_device_keys |
gv_sign_in |
Open a sign-in window (any provider). Auto-selects login level. (open-world) |
account_id, provider, credentials |
gv_open_account |
Open browser reusing saved session (no login). (open-world) |
account_id |
gv_switch_account |
Switch the active account. |
account_id |
gv_get_session_status |
Check if session is running/authenticated. (read-only) |
account_id |
gv_check_session |
Check session health (cookie + probe URL). (read-only) |
account_id |
gv_close_account |
Close browser (session saved). |
account_id |
gv_lock_account |
Close + re-encrypt (session kept). |
account_id |
gv_sign_out |
Sign out of provider (invalidates session). (destructive) |
account_id, provider |
gv_delete_account |
Delete account + all data. (destructive) |
account_id |
Create and manage login recipes for any website. See Custom providers.
| Tool |
Description |
gv_create_provider |
Create a custom provider recipe. (destructive) |
gv_list_providers |
List all providers (built-in + custom) with capability flags. (read-only) |
gv_get_provider |
Show one provider's full config. (read-only) |
gv_update_provider |
Update a custom provider. (destructive) |
gv_delete_provider |
Delete a custom provider. (destructive) |
gv_record_login |
Record a login flow for Level 3 replay. (destructive) |
| Tool |
Description |
gv_detect_login_options |
Scan a page for SSO buttons, form fields, 2FA, captcha. (read-only) |
gv_set_credentials |
Store credentials for Level 2 auto-fill. (destructive) |
gv_get_credentials |
Show stored credential keys (values masked). (read-only) |
| Tool |
Description |
gv_open_ephemeral |
Open a throwaway session (no account, no login). (open-world) |
gv_close_ephemeral |
Close an ephemeral session + free resources. (destructive) |
Work on both managed accounts AND ephemeral sessions.
| Tool |
Description |
gv_open_url |
Open any URL in the active browser. (open-world) |
gv_get_page_content |
Read page text (+ optional screenshot). (read-only) |
gv_screenshot |
Capture a PNG. (read-only) |
gv_get_page_links |
List visible links. (read-only) |
gv_click_element |
Click by text or selector (humanize, delay_after_ms). (open-world) |
gv_fill_input |
Fill form field (humanize, typing_speed_wpm, mistake_rate). (open-world) |
gv_press_key |
Press a key or chord (Enter, Tab, Ctrl+A). (open-world) |
gv_scroll |
Human-like burst scroll. (open-world) |
gv_read_gmail |
Read Gmail inbox (Google-specific convenience). (read-only) |
| Tool |
Description |
gv_api_call |
HTTP request using browser session (cookies + TLS). (open-world) |
gv_eval_js |
Run JavaScript in the page (extract tokens, call site JS). (open-world) |
gv_get_cookies |
Read browser cookies (masked values). (read-only) |
| Tool |
Description |
gv_get_logs |
Read recent JSONL action log entries. (read-only) |
| Tool |
Description |
gv_get_auth_status |
Check if gate is active/unlocked. (read-only) |
gv_setup_password |
Set a password (one-time setup via browser window). (destructive) |
gv_unlock |
Unlock the gate (password or browser window). |
gv_logout |
Lock the gate + close private contexts. |
gv_make_private |
Mark a profile as private. |
gv_make_public |
Mark a profile as public. |