High-risk tools in AVD MCP Server
17 of the 25 tools in AVD MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
adb_install_apkExecuteInstala APK no device via adb install -r.
-
adb_shellExecuteExecuta comando adb shell em safe mode.
-
app_force_stopExecuteForça parada do app via am force-stop.
-
app_launchExecuteAbre o app por monkey ou am start quando activity for informada.
-
avd_restartExecuteReinicia um emulador (kill + start) com opções de boot e telemetria de duração.
-
avd_run_and_screenshotExecuteSobe AVD se necessário, roda comando (pnpm/gradle/etc) e tira screenshot.
-
avd_startExecuteSobe um AVD com opções de boot (coldBoot, wipeData, noWindow, readOnly, gpuMode).
-
avd_stopExecuteEncerra um emulador online via adb emu kill (serial opcional).
-
grant_permissionsExecuteConcede permissões com pm grant e retorno por permissão.
-
network_conditionExecuteAplica perfil de rede no emulador (delay/speed) ou perfil avançado.
-
network_toggleExecuteLiga/desliga wifi, dados móveis e modo avião via adb shell svc/settings.
-
open_deeplinkExecuteAbre deeplink via am start VIEW com URI.
-
screenrecord_startExecuteInicia gravação de tela no device e retorna sessionId.
-
set_battery_stateExecuteAjusta estado de bateria (nível/carga) via dumpsys battery.
-
set_localeExecuteDefine locale do device (idioma/país) via setprop e broadcast.
-
set_locationExecuteDefine localização GPS no emulador via adb emu geo fix.
-
set_rotationExecuteDefine rotação do device (portrait/landscape).
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.