High-risk tools in GDB Lite MCP
3 of the 4 tools in GDB Lite MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
gdb_execExecuteSend a gdb command and return all output since the previous gdb_exec or gdb_interrupt call. Join multiple commands with \\n. Empty command only polls output. If session_id is em...
-
gdb_interruptExecuteSend SIGINT to the gdb session/debuggee, wait for the GDB prompt, and return incremental output.
-
gdb_spawnExecuteStart a gdb session and return a session id. Supports local programs, core files, attach, remote targets, and extra native gdb args.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.