High-risk tools in Claude Code Toolkit

High severity Claude Code Toolkit MCP Server 4 of 40 tools

4 of the 40 tools in Claude Code Toolkit are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

run_doctor Execute

Full integrity check: detects corrupted JSONL lines, truncated thinking blocks, oversized images/PDFs, sessions over 50 MB, sessions-index drift, orphaned subagent directories, ...
run_maintenance Execute

Run maintenance checks on Claude Code installation. Identifies issues, old backups, and archive candidates. Can optionally perform fixes automatically.
start_dashboard Execute

Start the web dashboard on a local port. Returns the URL to open in a browser.
unstick_session Execute

Unstick a Claude Code session that

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in Claude Code Toolkit

Tools at high risk

Attacks that target this class

More on Claude Code Toolkit

Enforce policy on every Claude Code Toolkit tool call.