High-risk tools in Dap

High severity Dap MCP Server 7 of 14 tools

7 of the 14 tools in Dap are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

launch Execute

Launch the debuggee program. Set breakpoints before launching if necessary.
change_frame Execute

Change the current debugging frame to the specified frame ID.
continue_execution Execute

Continue execution in the debugger after hitting a breakpoint.
evaluate Execute

Evaluate an expression in the current debugging context.
next Execute

Step over to the next line of code in the debugger.
step_in Execute

Step into the function call in the debugger.
step_out Execute

Step out of the current function in the debugger.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Dap

Tools at high risk

Attacks that target this class

More on Dap

Enforce policy on every Dap tool call.