AFFiNE MCP Server

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations provided, the description carries the full burden of behavioral disclosure. It mentions the token requirement, which is useful context, but fails to describe critical behavioral aspects: whether this action is destructive (it likely changes authentication state), what permissions are needed, whether it affects user sessions, or what the response looks like. For a security-sensitive mutation tool, this leaves significant gaps.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is extremely concise—a single sentence that efficiently conveys the core purpose and a key constraint. Every word earns its place, with no redundant information. The structure is front-loaded with the main action, followed by the essential prerequisite.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the complexity of a password change operation (a security-critical mutation), the absence of annotations and output schema, and the description's brevity, this is incomplete. It lacks details on behavioral impact, error conditions, success responses, and security implications. For such a tool, more context is needed to ensure safe and correct usage.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

Schema description coverage is 100%, with all three parameters clearly documented in the schema itself. The description adds minimal value beyond the schema by implying the token's origin ('from email'), but doesn't provide additional context about parameter relationships, validation rules, or security considerations. The baseline score of 3 reflects adequate but not enhanced parameter understanding.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the action ('Change user password') and the resource ('password'), making the purpose immediately understandable. It distinguishes from siblings like 'affine_sign_in' or 'affine_update_profile' by focusing specifically on password modification. However, it doesn't specify whether this is for the current user or another user, which could be clarified.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description provides some usage context by mentioning 'requires token from email', which implies this is for password reset scenarios rather than routine password changes. However, it doesn't explicitly state when to use this versus alternatives like 'affine_sign_in' for authentication or 'affine_update_profile' for other user updates, nor does it mention prerequisites beyond the token requirement.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.