Critical-risk tools in Leapfrog

Critical severity Leapfrog MCP Server 3 of 37 tools

3 of the 37 tools in Leapfrog are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

network_intercept Destructive 4/5

Add or remove network intercept rules. Block requests (ads, trackers), mock API responses, or log specific traffic. Use action='remove' with ruleId to remove an existing rule.
profile_delete Destructive 4/5

Delete a saved persistent browser profile and all its data.
session_destroy Destructive 4/5

Close and clean up a browser session. Frees a pool slot.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in Leapfrog

Tools at critical risk

Attacks that target this class

More on Leapfrog

Enforce policy on Leapfrog