High-risk tools in Nandi Proxmox

High severity Nandi Proxmox MCP Server 5 of 25 tools

5 of the 25 tools in Nandi Proxmox are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

pve_docker_logs_in_container Execute

Run docker logs in container.
pve_docker_ps_in_container Execute

Run docker ps in container.
pve_exec_in_container Execute

Run command in container via pct exec.
pve_run_remote_diagnostic Execute

Run safe diagnostic command in container.
pve_ssh_batch_diagnostics Execute

Run SSH batch diagnostics.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Nandi Proxmox

Tools at high risk

Attacks that target this class

More on Nandi Proxmox

Let agents act without letting them run wild.