Critical-risk tools in Phoenixd MCP Server
5 of the 17 tools in Phoenixd MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
bump-feeFinancialMakes all your unconfirmed transactions use a higher fee rate, using CPFP. Returns the ID of the child transaction
-
pay-invoiceFinancialPay a bolt11 invoice with a specified amount and description
-
pay-lightning-addressFinancialPays an email-like Lightning address, either based on BIP-353 or LNURL
-
pay-offerFinancialPay a bolt12 offer
-
pay-on-chainFinancialPay an on-chain address with a specified amount and fee rate
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.