High-risk tools in Clevername

High severity Clevername MCP Server 3 of 67 tools

3 of the 67 tools in Clevername are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

aithroyz_provision_tenant Execute

Trigger provisioning of an Aithroyz tenant environment. If the operator has SignedApproval linked, a mobile approval gate will fire first.
call_mcp_tool Execute

Directly invoke a tool on one of the user's registered MCP servers by connection_id. Use this for one-off tool calls without activating the full server in this session. For repe...
vault_sync Execute

Trigger a vault sync — discovers secrets from the org's connected keystore, classifies them, validates credentials, and auto-creates integration references. Keys stay in the cus...

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in Clevername

Tools at high risk

Attacks that target this class

More on Clevername

Let agents act without letting them run wild.