# search (/docs/reference/mcp-tools/search)



{/* Generated by apps/docs/scripts/generate-mcp-pages.mjs — do not edit by hand. */}

Full-text search across work items, comments, projects, labels, and users (ranked, permission-scoped).

|                     |                |
| ------------------- | -------------- |
| Required permission | `work:read`    |
| Capability ID       | `search.query` |
| Destructive         | No             |

## Parameters [#parameters]

| Parameter | Type    | Required | Notes |
| --------- | ------- | -------- | ----- |
| `q`       | string  | yes      |       |
| `types`   | string  | no       |       |
| `limit`   | integer | no       |       |

## Input schema (JSON Schema) [#input-schema-json-schema]

```json
{
  "type": "object",
  "properties": {
    "q": {
      "type": "string",
      "minLength": 1,
      "maxLength": 256
    },
    "types": {
      "type": "string"
    },
    "limit": {
      "type": "integer",
      "minimum": 0,
      "maximum": 50,
      "default": 20
    }
  },
  "required": [
    "q"
  ],
  "additionalProperties": false
}
```

## Access control [#access-control]

A call succeeds only when the personal access token's scopes **and** the holder's role both allow `work:read` (effective permission = scope ∩ role, default-deny). The tool runs inside the token owner's organization — tenancy is never a parameter.