High-risk tools in Slack Max API MCP
4 of the 38 tools in Slack Max API MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
gateway_runExecuteRun a Slack action through a single gateway tool. Supports Slack Web API method call and generic HTTP call.
-
ops_playbook_runExecuteRun a named operations playbook (incident open, support digest, release broadcast) with config-backed defaults and state persistence.
-
slack_api_callExecuteCall any Slack Web API method directly.
-
slack_http_api_callExecuteGeneric HTTP call for Slack APIs outside standard Web API methods (SCIM/Audit/Legal Holds).
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.