High-risk tools in Code Index

High severity Code Index MCP Server 3 of 14 tools

3 of the 14 tools in Code Index are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

build_deep_index Execute

Build the deep index (full symbol extraction) for the current project. This performs a complete re-index and loads it into memory. Uses parallel processing by default. ...
refresh_index Execute

Manually rebuild the project file index. Use after git operations or when index seems stale.
refresh_search_tools Execute

Manually re-detect the available command-line search tools on the system. This is useful if you have installed a new tool (like ripgrep) after starting the server.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in Code Index

Tools at high risk

Attacks that target this class

More on Code Index

Enforce policy on every Code Index tool call.