High-risk tools in Clevername
3 of the 67 tools in Clevername are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
aithroyz_provision_tenantExecute 3/5Trigger provisioning of an Aithroyz tenant environment. If the operator has SignedApproval linked, a mobile approval gate will fire first.
-
call_mcp_toolExecute 3/5Directly invoke a tool on one of the user's registered MCP servers by connection_id. Use this for one-off tool calls without activating the full server in this session. For repe...
-
vault_syncExecute 4/5Trigger a vault sync — discovers secrets from the org's connected keystore, classifies them, validates credentials, and auto-creates integration references. Keys stay in the cus...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.
More on Clevername
Enforce policy on Clevername
One command generates a policy scaffold for every server in your MCP config.
npx -y @policylayer/intercept init