High-risk tools in Botoi Mcp
6 of the 49 tools in Botoi Mcp are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
dev_semver_parseExecuteParse and validate a semver string into major, minor, patch, pre-release, and build components. Use when checking version compatibility or sorting releases.
-
transform_code_formatExecuteFormat source code with language-aware indentation and style rules. Supports JS, TS, Python, Go, Rust, and more. Use when standardizing code style or preparing snippets for docu...
-
transform_json_to_typescriptExecuteGenerate TypeScript interfaces from a JSON sample. Use when building type-safe API clients or converting API responses into TypeScript types.
-
transform_minify_cssExecuteMinify CSS stylesheets by removing whitespace, comments, and redundant rules. Use when reducing stylesheet size for faster page loads.
-
transform_minify_jsExecuteMinify JavaScript code by removing whitespace, comments, and shortening variable names. Use when optimizing bundle size for production deployment.
-
transform_sql_formatExecuteFormat and beautify SQL queries with proper indentation and keyword casing. Use when cleaning up inline SQL for code reviews, documentation, or debugging.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.