High-risk tools in CSPR[dot]trade MCP
5 of the 24 tools in CSPR[dot]trade MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
build_add_liquidityExecuteBuild an unsigned add-liquidity transaction for a token pair
-
build_approve_tokenExecuteBuild an unsigned token approval transaction. Spender defaults to the CSPR.trade router.
-
build_remove_liquidityExecuteBuild an unsigned remove-liquidity transaction
-
build_swapExecuteBuild an unsigned swap transaction. Returns the deploy JSON for external signing, plus a human-readable summary.
-
sign_deployExecuteSign an unsigned Casper deploy locally. Private key never leaves this machine. Supports PEM key files and BIP-39 mnemonic phrases.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.