High-risk tools in Webtools MCP Server
4 of the 10 tools in Webtools MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
webtool_debugExecuteDebug a webpage by capturing console output, network requests, errors, and layout thrashing with custom device emulation. Includes advanced response size management with paginat...
-
webtool_lighthouseExecuteRun a Lighthouse audit on a webpage to generate a comprehensive performance report with detailed resource analysis. The report includes specific file paths, resource sizes, and ...
-
webtool_performance_testExecuteRun performance tests across different devices and network conditions. Compare results and identify device-specific or network-specific issues.
-
webtool_performance_traceExecutePerform a detailed performance analysis with specialized modules for layout thrashing, CSS variables impact, JavaScript execution timeline, long tasks breakdown, memory and DOM ...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.