High-risk tools in Awx

High severity Awx MCP Server 8 of 49 tools

8 of the 49 tools in Awx are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

ansible_playbook Execute

Run an Ansible playbook locally
ansible_role Execute

Run an Ansible role
ansible_task Execute

Run an ad-hoc Ansible task
awx_launch_job_template Execute

Launch a job from an AWX template
awx_launch_workflow_job Execute

Launch an AWX workflow
awx_relaunch_job Execute

Relaunch a previous AWX job
awx_sync_project Execute

Sync AWX project from source control
project_run_playbook Execute

Run a playbook from a project

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Awx

Tools at high risk

Attacks that target this class

More on Awx

Let agents act without letting them run wild.