High-risk tools in Mcp Debugger
7 of the 29 tools in Mcp Debugger are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
debugger_startExecuteStart a new debug session with a Node.js process. The process will be paused at the start.
-
debugger_start_cpu_profileExecuteStart CPU profiling for a debug session. Collects CPU profile data for performance analysis.
-
debugger_step_intoExecuteExecute the current line and pause at the first line inside any called function.
-
debugger_step_outExecuteExecute until the current function returns and pause at the calling location.
-
debugger_step_overExecuteExecute the current line and pause at the next line in the same scope.
-
debugger_stop_cpu_profileExecuteStop CPU profiling and return the profile data with bottleneck analysis.
-
debugger_stop_sessionExecuteStop a debug session, cleanup all resources, and kill the process if still running.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.