High-risk tools in Pega DX MCP Server
12 of the 65 tools in Pega DX MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
navigate_assignment_previousExecuteNavigate back to the previously visited step in a screen flow or multi-step form assignment. If no finalETag.trim() is provided, automatically fetches the latest finalETag.trim(...
-
refresh_assignment_actionExecuteRefresh assignment action form data with updated values after property changes, execute Data Transforms, and handle table row operations in modals. Supports form refresh setting...
-
refresh_case_actionExecuteRefresh case action form data with updated values after property changes, execute Data Transforms, and handle table row operations in modals. If no eTag is provided, automatical...
-
change_to_next_stageExecuteNavigate a Pega case to its next stage in the primary stage sequence. Cannot be used when case is in alternate stage or already in final stage. If no eTag is provided, automatic...
-
change_to_stageExecuteChange to a specified stage of a case based on stageID passed. Allows navigation to any valid stage (primary, alternate) within a case workflow. If no eTag is provided, automati...
-
jump_to_stepExecuteJump to the specified step within an assignment\
-
perform_assignment_actionExecutePerform an assignment action to submit completed work and progress workflow. This is the FINAL step after all required fields are filled. Auto-fetches eTag if not provided. Retu...
-
perform_case_actionExecutePerform an action on a Pega case, updating case data and progressing the workflow. Takes the case ID and action ID as parameters, along with optional content, page instructions,...
-
recalculate_assignment_fieldsExecuteRecalculate calculated fields & whens for the current assignment action form. If no eTag is provided, automatically fetches the latest eTag from the assignment for seamless oper...
-
recalculate_case_action_fieldsExecuteRecalculate calculated fields & whens for the current case action form. If no eTag is provided, automatically fetches the latest eTag from the case action for seamless operation...
-
add_optional_processExecuteAdd stage or case-wide optional process and return details of the next assignment in the process. The API is invoked when a user tries to initiate an optional action listed unde...
-
perform_bulk_actionExecutePerform case action on multiple cases simultaneously (bulk operation). Executes the specified action on all cases provided in the request. In Infinity, actions are performed syn...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.