High-risk tools in BrowserTools

High severity BrowserTools MCP Server 7 of 15 tools

7 of the 15 tools in BrowserTools are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

runAccessibilityAudit Execute 3/5

Run WCAG accessibility audit via Lighthouse
runAuditMode Execute 4/5

Run all audit tools in sequence
runBestPracticesAudit Execute 3/5

Run web best-practices audit
runDebuggerMode Execute 4/5

Run all debugging tools in sequence
runNextJSAudit Execute 3/5

Run Next.js-specific audit
runPerformanceAudit Execute 3/5

Run performance audit on the page
runSEOAudit Execute 3/5

Run SEO audit on the page

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in BrowserTools

Tools at high risk

Attacks that target this class

More on BrowserTools

Enforce policy on BrowserTools