High-risk tools in PyMCPAutoGUI

High severity PyMCPAutoGUI MCP Server 22 of 34 tools

22 of the 34 tools in PyMCPAutoGUI are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

activate_window Execute

Activates (brings to the front) the first window matching the title.
alert Execute

alert
click Execute

click
confirm Execute

confirm
drag_rel Execute

drag_rel
drag_to Execute

drag_to
hotkey Execute

hotkey
key_down Execute

Presses and holds down the specified keyboard key.
key_up Execute

Releases the specified keyboard key.
maximize_window Execute

Maximizes the first window matching the title.
minimize_window Execute

Minimizes the first window matching the title.
mouse_down Execute

mouse_down
mouse_up Execute

mouse_up
move_rel Execute

move_rel
move_to Execute

Moves the mouse cursor to the specified X and Y coordinates.
move_window Execute

move_window
press Execute

press
resize_window Execute

resize_window
restore_window Execute

Restores the first window matching the title (if minimized or maximized).
scroll Execute

scroll
set_failsafe Execute

Enables or disables the failsafe feature (moving mouse to top-left corner to stop).
write Execute

write

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in PyMCPAutoGUI

Tools at high risk

Attacks that target this class

More on PyMCPAutoGUI

Enforce policy on every PyMCPAutoGUI tool call.