High-risk tools in Awx

High severity Awx MCP Server 8 of 49 tools

8 of the 49 tools in Awx are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

ansible_playbook Execute 5/5

Run an Ansible playbook locally
ansible_role Execute 5/5

Run an Ansible role
ansible_task Execute 5/5

Run an ad-hoc Ansible task
awx_launch_job_template Execute 5/5

Launch a job from an AWX template
awx_launch_workflow_job Execute 5/5

Launch an AWX workflow
awx_relaunch_job Execute 4/5

Relaunch a previous AWX job
awx_sync_project Execute 3/5

Sync AWX project from source control
project_run_playbook Execute 5/5

Run a playbook from a project

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Awx

Tools at high risk

Attacks that target this class

More on Awx

Enforce policy on Awx