WhatsApp Business API MCP 工具

WhatsApp Business API MCP 工具按官方號碼、business profile、聯絡人、分眾、同意、team inbox、24 小時 session、template 審核、broadcast、互動按鈕、自動回覆、webhook、送達報告及 audit workflow 設計。

whatsapp.config.get

read

讀取 WhatsApp Business API、Webhook、發送限額、24 小時時窗、template 及審批設定。

建議先讀取

-

治理與審批

Read-only. No approval required.

安全說明

Do not expose Meta access tokens, webhook secrets, app secrets, or phone number private credentials.

whatsapp.phone_numbers.list

read

列出官方 WhatsApp 號碼、顯示名稱、品質評分、發送層級及連線狀態。

建議先讀取

whatsapp.config.get

治理與審批

Read-only. No approval required.

安全說明

Hide verification details and provider identifiers unless admin role is present.

whatsapp.business_profile.get

read

讀取商業檔案、地址、網站、類別、簡介、營業時間及官方認證狀態。

建議先讀取

whatsapp.phone_numbers.list

治理與審批

Read-only. No approval required.

安全說明

Do not expose account verification documents or Meta business manager secrets.

whatsapp.contacts.list

read

查詢 WhatsApp 聯絡人、電話、標籤、分眾、同意、封鎖及最近互動。

建議先讀取

whatsapp.config.get

治理與審批

Read-only. No approval required.

安全說明

Mask phone and profile data according to customer-data permissions.

whatsapp.contact.get

read

讀取單一聯絡人資料、對話、同意、訂閱偏好、購買紀錄及 CRM 連結。

建議先讀取

whatsapp.contacts.list

治理與審批

Read-only. No approval required.

安全說明

Keep contact data tenant-scoped and channel-consent scoped.

whatsapp.segments.list

read

列出客戶分組、條件、預估人數、排除名單及可用 template 類別。

建議先讀取

whatsapp.contacts.list, whatsapp.consent_records.list

治理與審批

Read-only. No approval required.

安全說明

Segment counts must exclude opted-out, blocked, or invalid contacts.

whatsapp.consent_records.list

read

查詢 WhatsApp 同意、退訂、封鎖、來源、時間及適用訊息類別。

建議先讀取

whatsapp.contacts.list

治理與審批

Read-only. No approval required.

安全說明

Consent state is authoritative for broadcasts and must not be bypassed.

whatsapp.conversations.list

read

按狀態、負責人、隊列、最後訊息、未讀、SLA 或 24 小時時窗查詢對話。

建議先讀取

whatsapp.contacts.list

治理與審批

Read-only. No approval required.

安全說明

Only return conversations available to the requester or assigned team.

whatsapp.conversation.get

read

讀取對話訊息、附件、按鈕回覆、指派、CRM context、訂單及處理紀錄。

建議先讀取

whatsapp.conversations.list

治理與審批

Read-only. No approval required.

安全說明

Mask private staff notes and attachment URLs unless authorized.

whatsapp.inbox_assignments.list

read

查詢 team inbox 隊列、負責人、分流規則、移交紀錄及未處理對話。

建議先讀取

whatsapp.conversations.list

治理與審批

Read-only. No approval required.

安全說明

Do not reveal conversations assigned to restricted queues.

whatsapp.templates.list

read

列出已核准、待審、被拒、停用及不同語言的 Meta 訊息範本。

建議先讀取

whatsapp.config.get

治理與審批

Read-only. No approval required.

安全說明

Do not use unapproved templates for outbound business-initiated messages.

whatsapp.template.get

read

讀取範本文字、變數、媒體、按鈕、語言、類別、審核原因及品質狀態。

建議先讀取

whatsapp.templates.list

治理與審批

Read-only. No approval required.

安全說明

Show rejected reasons without exposing Meta internal tokens or reviewer data.

whatsapp.template_quality.get

read

讀取 template 品質、封鎖率、回報率、暫停風險及可發送限制。

建議先讀取

whatsapp.template.get

治理與審批

Read-only. No approval required.

安全說明

Quality data should guide throttling and must not be edited by reads.

whatsapp.broadcasts.list

read

查詢廣播草稿、受眾、template、排程、批核、發送狀態及失敗原因。

建議先讀取

whatsapp.segments.list, whatsapp.templates.list

治理與審批

Read-only. No approval required.

安全說明

Audience counts must exclude opt-outs and contacts without required consent.

whatsapp.flows.list

read

讀取 FAQ、自動回覆、關鍵字、客戶旅程、按鈕節點及 fallback 流程。

建議先讀取

whatsapp.config.get

治理與審批

Read-only. No approval required.

安全說明

Draft automation should not answer customers until enabled through approval.

whatsapp.keyword_rules.list

read

列出關鍵字、意圖、回覆內容、分流隊列、觸發條件及優先次序。

建議先讀取

whatsapp.flows.list

治理與審批

Read-only. No approval required.

安全說明

Avoid exposing internal routing logic to customer-facing users.

whatsapp.webhook_logs.list

read

查詢 inbound、status update、template review、delivery receipt webhook 紀錄及錯誤。

建議先讀取

whatsapp.config.get

治理與審批

Read-only. No approval required.

安全說明

Mask webhook payload PII and secrets; retain replay boundaries.

whatsapp.opt_outs.list

read

查詢退訂、封鎖、STOP 字眼、投訴及不可發送名單。

建議先讀取

whatsapp.consent_records.list

治理與審批

Read-only. No approval required.

安全說明

Suppression list must be enforced before any broadcast or campaign send.

whatsapp.media_assets.list

read

列出可用圖片、文件、影片、template header media、尺寸及審核狀態。

建議先讀取

whatsapp.templates.list

治理與審批

Read-only. No approval required.

安全說明

Only return signed asset references and check Meta media policy.

whatsapp.message_delivery.list

read

查詢訊息 sent、delivered、read、failed、reply、click 及錯誤代碼。

建議先讀取

whatsapp.broadcasts.list or whatsapp.conversation.get

治理與審批

Read-only. No approval required.

安全說明

Do not expose other customers' message state outside authorized reports.

whatsapp.conversation_summary.get

read

讀取回覆時間、SLA、未處理對話、分流量、解決率及員工工作量。

建議先讀取

whatsapp.conversations.list, whatsapp.inbox_assignments.list

治理與審批

Read-only. No approval required.

安全說明

Aggregate staff metrics unless manager permission allows individual detail.

whatsapp.campaign_report.get

read

讀取廣播送達、讀取、回覆、按鈕點擊、轉換、退訂及成本摘要。

建議先讀取

whatsapp.broadcasts.list, whatsapp.message_delivery.list

治理與審批

Read-only. No approval required.

安全說明

Respect attribution boundaries and avoid exposing individual behavior unnecessarily.

whatsapp.policy_rules.get

read

讀取 Meta template 類別、同意、退訂、24 小時時窗、頻率及批核規則。

建議先讀取

whatsapp.config.get

治理與審批

Read-only. No approval required.

安全說明

Policy rules must be treated as guardrails for every send and automation write.

whatsapp.audit_logs.list

read

讀取聯絡人、同意、template、廣播、對話、分流、自動化及 webhook audit log。

建議先讀取

whatsapp.contact.get or whatsapp.broadcasts.list

治理與審批

Read-only. No approval required.

安全說明

Audit logs must be immutable and restricted to admin/compliance roles.

whatsapp.template_submit.preview

preview

預覽 template 類別、文案、變數、按鈕、媒體、語言及 Meta 審核風險。

建議先讀取

whatsapp.template.get, whatsapp.policy_rules.get, whatsapp.media_assets.list

治理與審批

Approval required before submitting or resubmitting a Meta template.

安全說明

Detect prohibited claims, wrong category, missing variables, and policy mismatch.

whatsapp.broadcast.preview

preview

預覽廣播受眾、同意、template、變數、排程、成本、頻率及退訂風險。

建議先讀取

whatsapp.segments.list, whatsapp.consent_records.list, whatsapp.template.get, whatsapp.policy_rules.get

治理與審批

Human approval required before any bulk or campaign send.

安全說明

Exclude opt-outs, blocked numbers, invalid contacts, and unapproved templates.

whatsapp.session_message.preview

preview

預覽 24 小時客服時窗內可發送內容、附件、按鈕、收件人及 context。

建議先讀取

whatsapp.conversation.get, whatsapp.policy_rules.get

治理與審批

Approval required for sensitive, payment, or policy-changing replies.

安全說明

Block free-form business-initiated sends outside the 24-hour session window.

whatsapp.automation_change.preview

preview

預覽自動回覆、關鍵字、分流、fallback、按鈕及受影響對話流程。

建議先讀取

whatsapp.flows.list, whatsapp.keyword_rules.list, whatsapp.policy_rules.get

治理與審批

Approval required before automation becomes live.

安全說明

Prevent loops, wrong queue routing, misleading replies, and unapproved template sends.

whatsapp.contact_import.preview

preview

預覽匯入聯絡人去重、電話格式、同意來源、分眾、退訂排除及錯誤。

建議先讀取

whatsapp.contacts.list, whatsapp.consent_records.list, whatsapp.opt_outs.list

治理與審批

Approval required before bulk contact import or consent update.

安全說明

Do not import contacts without traceable consent source.

whatsapp.order_payment_message.preview

preview

預覽對話內開單、付款連結、產品資料、客戶資料及發送訊息。

建議先讀取

whatsapp.conversation.get, whatsapp.contact.get, whatsapp.session_message.preview

治理與審批

Approval required before creating order or sending payment link.

安全說明

Confirm customer identity and avoid exposing payment links to wrong conversations.

whatsapp.handover.preview

preview

預覽對話指派、移交、隊列、SLA、內部備註及通知影響。

建議先讀取

whatsapp.conversation.get, whatsapp.inbox_assignments.list

治理與審批

Approval required for restricted queues or bulk reassignment.

安全說明

Do not expose private notes to customers and preserve handover history.

whatsapp.contact.upsert

write

建立或更新聯絡人、姓名、電話、CRM 連結、標籤、語言及偏好。

建議先讀取

whatsapp.contact.get or whatsapp.contacts.list

治理與審批

Approval required for sensitive identity or phone changes.

安全說明

Deduplicate by normalized phone and preserve consent history.

whatsapp.contact.import

write

批量匯入聯絡人、分眾、標籤及同意來源。

建議先讀取

whatsapp.contact_import.preview

治理與審批

Approval required before bulk import.

安全說明

Reject rows without valid phone or traceable consent.

whatsapp.segment.upsert

write

建立或更新客戶分眾條件、排除規則、同步規則及用途。

建議先讀取

whatsapp.segments.list, whatsapp.broadcast.preview

治理與審批

Approval required when segment affects active or scheduled broadcasts.

安全說明

Keep opt-outs excluded and prevent accidental all-customer targeting.

whatsapp.consent.update

write

更新同意、退訂、封鎖、來源、類別及時間戳。

建議先讀取

whatsapp.consent_records.list, whatsapp.opt_outs.list

治理與審批

Approval required for bulk consent changes or opt-out reversal.

安全說明

Never override opt-out without verified customer action and audit record.

whatsapp.conversation.assign

write

指派、轉交或重新分配對話到隊列、團隊或負責人。

建議先讀取

whatsapp.handover.preview

治理與審批

Approval required for restricted queue transfers or bulk changes.

安全說明

Preserve handover history and do not notify customers with internal notes.

whatsapp.session_message.send

write

在 24 小時客服時窗內發送文字、附件、按鈕或客服回覆。

建議先讀取

whatsapp.session_message.preview

治理與審批

Approval required for sensitive or payment-related replies.

安全說明

Block session messages outside active customer-care window unless template is used.

whatsapp.template_draft.upsert

write

建立或更新 template 草稿、變數、媒體、按鈕、多語版本及類別。

建議先讀取

whatsapp.template_submit.preview

治理與審批

Approval required before customer-facing use or Meta submission.

安全說明

Validate variables and category before storing submit-ready draft.

whatsapp.template.submit

write

提交 template 到 Meta 審核或重新提交修正版。

建議先讀取

whatsapp.template_submit.preview

治理與審批

Explicit approval required before submission.

安全說明

Use preview as contract and store Meta review response in audit.

whatsapp.broadcast.create

write

建立廣播草稿、受眾、template、變數、排除名單及目標。

建議先讀取

whatsapp.broadcast.preview

治理與審批

Approval required before scheduling or sending.

安全說明

Do not create executable broadcast without approved template and consent-filtered audience.

whatsapp.broadcast.schedule

write

安排已批核廣播的發送時間、節流、批次及 fallback。

建議先讀取

whatsapp.broadcast.preview, whatsapp.broadcasts.list

治理與審批

Human approval required before execution.

安全說明

Recheck template approval, quality rating, consent, and opt-out state before send.

whatsapp.flow.upsert

write

建立或更新 FAQ、自動回覆、按鈕流程、分流及 fallback。

建議先讀取

whatsapp.automation_change.preview

治理與審批

Approval required before flow is active.

安全說明

Prevent loops, stale pricing, and policy-violating replies.

whatsapp.keyword_rule.upsert

write

建立或更新關鍵字、意圖、回覆、分流隊列及優先次序。

建議先讀取

whatsapp.automation_change.preview

治理與審批

Approval required before live routing or replies change.

安全說明

Avoid matching overly broad keywords that misroute customers.

whatsapp.auto_reply.enable

write

啟用、停用或調整自動回覆流程的生效範圍及時間。

建議先讀取

whatsapp.automation_change.preview

治理與審批

Approval required before activation or deactivation.

安全說明

Check fallback and human handover path before enabling.

whatsapp.conversation.close

write

關閉已處理對話,記錄結果、標籤、SLA 及 follow-up。

建議先讀取

whatsapp.conversation.get

治理與審批

Approval required for complaint, payment, or escalation closures.

安全說明

Do not close unresolved or active escalation conversations without owner confirmation.

whatsapp.order.create_from_chat

write

由對話建立訂單、客戶、產品、數量、價格及備註。

建議先讀取

whatsapp.order_payment_message.preview

治理與審批

Approval required before creating order from conversation.

安全說明

Confirm customer identity, product, price, and stock/source system before write.

whatsapp.payment_link.send

write

向對話發送已批核訂單或發票付款連結。

建議先讀取

whatsapp.order_payment_message.preview

治理與審批

Approval required before sending payment link.

安全說明

Use short-lived links and verify recipient conversation before send.

whatsapp.media_asset.upload

write

上載 template 或對話可用的圖片、文件、影片及 metadata。

建議先讀取

whatsapp.media_assets.list, whatsapp.template_submit.preview

治理與審批

Approval required before media is used in approved templates or broadcasts.

安全說明

Scan files and validate Meta media size/type policy.

whatsapp.tag.apply

write

為聯絡人或對話套用標籤、分眾訊號或 follow-up 狀態。

建議先讀取

whatsapp.contact.get, whatsapp.conversation.get

治理與審批

Approval required for bulk tags that affect campaigns or routing.

安全說明

Avoid tags that imply consent unless consent update is explicitly recorded.

whatsapp.webhook.retry

write

重試失敗 webhook 處理,例如 inbound 訊息、送達狀態或 template review。

建議先讀取

whatsapp.webhook_logs.list

治理與審批

Approval required for bulk replay or state-changing webhook retry.

安全說明

Use idempotency keys and never replay already-applied customer actions.

whatsapp.action_request.status

status

查詢 WhatsApp 寫入、preview 或批核請求狀態,不會重新執行動作。

建議先讀取

whatsapp.audit_logs.list

治理與審批

Read-only status lookup. No approval required.

安全說明

Return status and audit references only; never replay sends, broadcasts, or webhook writes.