High-risk tools in Cleanshot

High severity Cleanshot MCP Server 9 of 19 tools

9 of the 19 tools in Cleanshot are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

cleanshot_all_in_one Execute

Launch CleanShot
cleanshot_capture_area Execute

Open CleanShot
cleanshot_capture_text Execute

Open CleanShot
cleanshot_hide_desktop_icons Execute

Hide desktop icons
cleanshot_open_annotate Execute

Open a file in CleanShot
cleanshot_open_history Execute

Open CleanShot
cleanshot_open_settings Execute

Open CleanShot settings with optional tab
cleanshot_record_screen Execute

Open CleanShot
cleanshot_scrolling_capture Execute

Open CleanShot

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Cleanshot

Tools at high risk

Attacks that target this class

More on Cleanshot

Enforce policy on every Cleanshot tool call.