Governed ability
Get all post meta
aafm/get-all-post-meta Read only
Read every allowlisted scalar meta value from a post the agent can edit, returned as a key/value map. Protected, underscore, and non-scalar values are excluded.
How it is governed
The same model as every ability in the plugin, stated for this one.
- Off until you enable it
Like every ability, Get all post meta ships switched off. You turn it on one at a time, and an update never widens access on its own.
- Reads only
It reads data and returns it to your client. Nothing on your site is created, changed, or removed.
- Capability gated
A connection only sees Get all post meta if the user you connected can run it, and the plugin checks that capability again before it executes.
- Every call audited
The call is written to the log in your own database, denials included, with the argument keys but never the values.
See it in action
An illustrative run. Your real calls and data stay on your own site.
Try it with a prompt
Example requests you could paste to your agent.
Give me all the custom fields on post 210 as a key value list.
Dump every allowlisted meta value for the About page.
List all the custom field values stored on that product review post.
These are illustrative example prompts. The agent runs them as the user you connected, checked against that user's capabilities and written to your audit log.
Frequently asked
Short answers for Get all post meta.
Does this include hidden or protected fields?
No. Protected, underscore-prefixed, and non-scalar values are left out, so only allowlisted scalar keys come back.
Is it read only?
Yes, it never writes. It also requires edit access to the post, is capability-gated, and is audited.
Governed by default, from the first call.
Get all post meta is off until you enable it, scoped to the user you connect, and logged like everything else. Turn on only what you need.
Every ability off until you enable it, capability-gated on every call.