High-risk tools in Dbt

High severity Dbt MCP Server 5 of 55 tools

5 of the 55 tools in Dbt are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

build Execute 5/5

Execute models, tests, snapshots in DAG order
execute_sql Execute 5/5

Execute SQL on dbt Cloud infrastructure
retry_job_run Execute 5/5

Retry a failed job run
run Execute 5/5

Execute models to materialise them in the database
trigger_job_run Execute 5/5

Trigger a job run on dbt Cloud

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Dbt

Tools at high risk

Attacks that target this class

More on Dbt

Enforce policy on Dbt