High-risk tools in Mittwald MCP Server
16 of the 172 tools in Mittwald MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
mittwald_app_install_wordpressExecuteInstall WordPress application.
-
mittwald_app_openExecuteOpen an app installation in the browser.
-
mittwald_app_sshExecuteConnect to an app via SSH.
-
mittwald_app_upgradeExecuteUpgrade app installation to target version.
-
mittwald_container_recreateExecuteRecreate a container.
-
mittwald_container_restartExecuteRestart a container.
-
mittwald_container_runExecuteCreate and start a new container.
-
mittwald_container_startExecuteStart a stopped container.
-
mittwald_container_stopExecuteStop a running container.
-
mittwald_cronjob_executeExecuteExecute a cronjob.
-
mittwald_database_mysql_phpmyadminExecuteOpen phpMyAdmin for a MySQL database (provides command for browser execution)
-
mittwald_database_mysql_port_forwardExecuteForward the TCP port of a MySQL database to a local port (provides command for long-running execution)
-
mittwald_database_mysql_shellExecuteConnect to a MySQL database via the MySQL shell (provides command for interactive execution)
-
mittwald_ddev_initExecuteInitialize DDEV project configuration.
-
mittwald_project_sshExecuteConnect to a project via SSH. (provides command for interactive terminal)
-
mittwald_stack_deployExecuteDeploy a docker-compose compatible file to a Mittwald stack.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.