High-risk tools in Webclaw
15 of the 21 tools in Webclaw are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
drop_filesExecuteDrop files onto an element (file input or drag-and-drop target) for uploading
-
hoverExecuteHover over an element to trigger mouseover events and reveal hidden UI (e.g., dropdown menus, tooltips)
-
invoke_webmcp_toolExecuteInvoke a WebMCP tool declared by the current page
-
navigate_toExecuteNavigate the browser to a URL
-
new_tabExecuteOpen a new browser tab
-
wait_for_navigationExecuteWait for the current page to finish loading
-
clickExecuteClick an element identified by its @ref from the latest page snapshot
-
evaluateExecuteEvaluate a JavaScript expression in the page context and return the result.
-
go_backExecuteNavigate back in browser history
-
go_forwardExecuteNavigate forward in browser history
-
handle_dialogExecuteHandle a native browser dialog (alert/confirm/prompt). Use this when a dialog is blocking page interaction.
-
reloadExecuteReload the current page
-
scroll_pageExecuteScroll the page or scroll to a specific element
-
switch_tabExecuteSwitch to a specific browser tab
-
type_textExecuteType text into an input element identified by its @ref
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.