High-risk tools in tmux-claude MCP Server

High severity tmux-claude MCP Server MCP Server 12 of 26 tools

12 of the 26 tools in tmux-claude MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

executeParallel Execute

Execute multiple tasks in parallel using Specialist instances (Manager only)
restart Execute

Restart a dead instance using --continue flag
vm_start Execute

Start a stopped VM instance
vm_stop Execute

Stop a running VM instance
distributeWork Execute

Distribute tasks across multiple Managers (Executive only)
enhancedSend Execute

Send a message with queuing and guaranteed delivery
merge_manager_work Execute

Coordinate merge of manager work back to main branch (Executive only)
send Execute

Send text/prompt to a Claude instance
spawn Execute

Spawn a new Claude instance with role and context
vm_bulk_create Execute

Create multiple VM instances for parallel development
vm_create Execute

Create a new VM instance for Claude development
vm_create_image Execute

Create an AMI from a VM instance

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in tmux-claude MCP Server

Tools at high risk

Attacks that target this class

More on tmux-claude MCP Server

Enforce policy on every tmux-claude MCP Server tool call.