High-risk tools in Algorand MCP
17 of the 172 tools in Algorand MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
make_app_clear_txnExecuteCreate an application clear state transaction
-
compile_tealExecuteCompile TEAL source code
-
api_ultrade_wallet_signinExecuteSign in to trading account
-
encode_unsigned_transactionExecuteEncode a transaction object into base64 unsigned transaction bytes (msgpack). Accepts output from make_*_txn or assign_group_id.
-
mnemonic_from_seedExecuteGenerate a mnemonic from a seed
-
rekey_accountExecuteRekey an Algorand account to a new address
-
sign_bytesExecuteSign bytes with a secret key
-
sign_transactionExecuteSign a transaction with a secret key
-
simulate_raw_transactionsExecuteSimulate already-encoded, optionally-signed transactions (base64 bytes). Use this when you have raw txn bytes ready and only need a pass/fail + log/cost result — no execution tr...
-
simulate_transactionsExecuteSimulate one or more transaction groups built from decoded transaction objects, with a full SimulateRequest config (allowEmptySignatures, allowMoreLogging, allowUnnamedResources...
-
wallet_sign_dataExecuteSign arbitrary data with the active wallet account using raw Ed25519 (noble library, no Algorand SDK prefix). Returns hex signature.
-
wallet_sign_transactionExecuteSign a single transaction with the active wallet account.
-
wallet_sign_transaction_groupExecuteSign a group of transactions with the active wallet account. Assigns group ID automatically.
-
assign_group_idExecuteAssign a group ID to a list of transactions
-
make_app_call_txnExecuteCreate an application call transaction
-
make_app_create_txnExecuteCreate an application creation transaction
-
send_raw_transactionExecuteSubmit signed transactions to the Algorand network
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.