High-risk tools in JupyterMCP

High severity JupyterMCP MCP Server 4 of 11 tools

4 of the 11 tools in JupyterMCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

run_all_cells Execute

Restart and run all cells in the notebook. You need to wait for user approval
run_cell Execute

Run a specific cell by its index Args: index: The index of the cell to run
edit_cell_content Execute

Edit the content of a specific cell by its index and optionally execute it Args: index: The index of the cell to edit content: The new content for the c...
insert_and_execute_cell Execute

Insert a cell at the specified position and execute it, and optionally set slideshow type. If code cell, it will be executed. If markdown cell, it will be rendered. ...

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in JupyterMCP

Tools at high risk

Attacks that target this class

More on JupyterMCP

Enforce policy on every JupyterMCP tool call.