High-risk tools in Par5

High severity Par5 MCP Server 3 of 8 tools

3 of the 8 tools in Par5 are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

run_agent_across_list Execute

Spawns an AI coding agent for each item in a previously created list. Agents run in batches of ${BATCH_SIZE} parallel processes with automatic permission skipping enabled. WHEN...
run_shell_across_list Execute

Executes a shell command for each item in a previously created list. Commands run in batches of ${BATCH_SIZE} parallel processes, with stdout and stderr streamed to separate fil...
create_list_from_shell Execute

Creates a list by running a shell command and parsing its newline-delimited output. WHEN TO USE: - When you need to create a list from command output (e.g., find, ls, grep, git...

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in Par5

Tools at high risk

Attacks that target this class

More on Par5

Enforce policy on every Par5 tool call.