High-risk tools in MCP Macaco Playwright
18 of the 36 tools in MCP Macaco Playwright are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
browser_clickExecutePerform click actions on a web page, including single clicks, double clicks, and right clicks. Supports different mouse buttons (left, right, middle) and can be used for checkin...
-
browser_dragExecutePerform drag and drop operations between two elements on a web page. Supports reordering items in sortable lists, moving cards in kanban boards, dragging files to upload zones, ...
-
browser_element_focusExecuteControl the focus state of a specific element. You can either set focus on an element (useful for keyboard navigation and form interactions) or remove focus from an element (use...
-
browser_evaluateExecuteRuns custom JavaScript functions in the browser, targeting either the page or specific elements, and returns the result.
-
browser_file_uploadExecuteResponds to browser file upload dialogs by selecting and uploading files. Works with file choosers triggered by <input type=
-
browser_handle_dialogExecuteHandles native browser dialogs that appear from JavaScript alert(), confirm(), or prompt() calls. Can accept/dismiss and provide text input for prompts.
-
browser_http_requestExecuteMake HTTP requests (GET, POST, PUT, DELETE, PATCH) with custom headers and body
-
browser_installExecuteInstall the browser specified in the config. Call this if you get an error about the browser not being installed.
-
browser_navigate_actionExecutePerform navigation actions using exact values:
-
browser_navigate_urlExecuteNavigate to a URL
-
browser_performExecutePerform a task with the browser. It can click, type, export, capture screenshot, drag, hover, select options, etc.
-
browser_playwright_codeExecuteExecute arbitrary Playwright code directly. This allows for advanced automation tasks that are not covered by other tools. The code should be wrapped in an async function. Examp...
-
browser_press_keyExecuteSimulate pressing a single key on the keyboard. Supports special keys (ArrowLeft, ArrowRight, Enter, Escape, Tab, etc.) and regular characters (a, b, 1, 2, etc.). Useful for nav...
-
browser_resizeExecuteResize the browser window to simulate different device viewports. Available options: mobile (375x667px - iPhone), tablet (768x1024px - iPad), desktop (1280x720px - HD)
-
browser_scroll_pageExecuteScroll the page to the very top or bottom. This is useful for quickly navigating to the beginning or end of long pages without needing to specify a particular element.
-
browser_tab_newExecuteCreate a new browser tab and optionally navigate to a specific URL. If no URL is provided, the new tab will remain blank. After creation, automatically captures a page snapshot ...
-
browser_tab_selectExecuteSwitch to a specific browser tab by its index position. After selecting the tab, automatically captures a page snapshot to provide the current state of the selected tab.
-
browser_wait_forExecuteWait for text to appear/disappear, element state changes, or a specified time to pass
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.