High-risk tools in Playwright MCP Server
15 of the 23 tools in Playwright MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
browser_check_checkboxExecuteCheck a checkbox
-
browser_clickExecuteClick on an element
-
browser_evaluateExecuteEvaluate JavaScript in the browser
-
browser_fill_formExecuteFill multiple form fields and optionally submit
-
browser_go_backExecuteGo back in browser history
-
browser_go_forwardExecuteGo forward in browser history
-
browser_hoverExecuteHover over an element
-
browser_navigateExecuteNavigate to a URL
-
browser_new_tabExecuteOpen a new browser tab
-
browser_reloadExecuteReload the current page
-
browser_scroll_toExecuteScroll to an element
-
browser_select_optionExecuteSelect an option from a dropdown
-
browser_typeExecuteType text into an element
-
browser_wait_for_load_stateExecuteWait for a specific load state
-
browser_wait_for_selectorExecuteWait for an element to appear
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.