High-risk tools in Browserless MCP Server

High severity Browserless MCP Server MCP Server 9 of 16 tools

9 of the 16 tools in Browserless MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

execute_browserql Execute

Execute BrowserQL GraphQL queries
execute_function Execute

Execute custom JavaScript function in browser context
initialize_browserless Execute

Initialize connection to Browserless instance
run_performance_audit Execute

Run Lighthouse performance audit
download_files Execute

Handle file downloads
unblock Execute

Bypass bot detection and anti-scraping measures
create_websocket_connection Execute

Create WebSocket connection for Puppeteer/Playwright
export_page Execute

Export webpage with resources
generate_pdf Execute

Generate PDF from URL or HTML content

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Browserless MCP Server

Tools at high risk

Attacks that target this class

More on Browserless MCP Server

Enforce policy on every Browserless MCP Server tool call.