High-risk tools in TaskMan of London

High severity TaskMan of London MCP Server 3 of 20 tools

3 of the 20 tools in TaskMan of London are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

start_booking_payment Execute

Use after collecting booking details to create a Stripe checkout payment session before final booking submission.
start_customer_verification Execute

Use when an existing customer wants to verify identity (OTP or magic link) before assistant-led booking.
start_trusted_phone_session Execute

Use in trusted telephony flows when the caller number is already verified by the channel provider and you need a short-lived booking session without OTP.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in TaskMan of London

Tools at high risk

Attacks that target this class

More on TaskMan of London

Let agents act without letting them run wild.