High-risk tools in JS Reverse MCP
37 of the 110 tools in JS Reverse MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
analyze_targetExecuteOne-shot reverse workflow: collect code, run security/crypto analysis, optional deobfuscation, and hook timeline correlation.
-
auto_rebuild_fix_loopExecuteCreate a resumable env-fix loop plan from runtime errors and observed capabilities.
-
breakpointExecuteManage JavaScript breakpoints: set, remove, or list active breakpoints.
-
click_elementExecuteClick an element by selector.
-
create_hookExecuteRECOMMENDED: Create hook script for function/fetch/xhr/property/cookie/websocket/eval/timer. Hooks run without pausing page execution and are the preferred approach over breakpo...
-
deobfuscate_codeExecuteAI-assisted JavaScript deobfuscation.
-
emulate_deviceExecuteEmulate a common mobile device profile.
-
evaluate_on_callframeExecuteEvaluates a JavaScript expression in the context of a specific call frame while paused. This allows you to inspect variables and execute code in the paused scope.
-
evaluate_scriptExecuteEvaluate a JavaScript function inside the currently selected page. Returns the response as JSON so returned values have to JSON-serializable.
-
export_function_sliceExecuteBuild a minimal function slice draft with direct helper dependencies and a Node env shim.
-
hook_functionExecuteRecommended default for reverse engineering: hook a function and log calls/args/results without pausing execution.
-
hover_elementExecuteHover over an element by selector.
-
inject_hookExecuteInject an existing hook into the current page.
-
inject_preload_scriptExecuteRegister a JavaScript snippet that will run on future document loads before page scripts execute. Use this for preload hooks, environment patches, and early instrumentation.
-
inject_stealthExecuteInject anti-detection stealth scripts to current page.
-
navigate_pageExecuteNavigates the currently selected page to a URL, or performs back/forward/reload navigation. Waits for DOMContentLoaded event (not full page load). Default timeout is 10 seconds.
-
new_pageExecuteCreates a new page and navigates to the specified URL. Waits for DOMContentLoaded event (not full page load). Default timeout is 10 seconds.
-
orchestrate_reverse_taskExecuteHigh-level reverse-task orchestrator that syncs task state, picks the primary next step, and returns a compact execution plan.
-
pauseExecutePauses JavaScript execution at the current point. Use this to interrupt running code.
-
press_keyExecutePress a keyboard key on the active page.
-
replay_page_flowExecuteReplay recorded page flow actions through PageController.
-
resumeExecuteResumes JavaScript execution after being paused at a breakpoint. Execution continues until the next breakpoint or completion.
-
run_reverse_agentExecuteOne-shot reverse agent entry: repeatedly plans and executes the main reverse chain until blocked, stalled, or reaching the analysis checkpoint.
-
scroll_pageExecuteScroll the page to absolute x/y coordinates.
-
select_frameExecuteSelects a frame (by index from list_frames) as the execution context for evaluate_script, hook_function, inspect_object, and other tools that run JavaScript in the page.
-
select_optionExecuteSelect one or more values in a native select element.
-
select_pageExecuteSelect a page as a context for future tool calls.
-
set_breakpoint_on_textExecuteSets a breakpoint on specific code (function name, statement, etc.) by searching for it and automatically determining the exact position. Works with both normal and minified fil...
-
step_intoExecuteSteps into the next function call. Use this to enter and debug function bodies.
-
step_outExecuteSteps out of the current function, continuing until the function returns. Use this to quickly exit a function.
-
step_overExecuteSteps over to the next statement, treating function calls as a single step. Use this to move through code without entering function bodies.
-
stop_monitorExecuteStops an event monitor.
-
trace_functionExecuteTraces calls to a function by its name in the source code. Works for ANY function including module-internal functions (webpack/rollup bundled). Uses
-
type_textExecuteType text into an input element.
-
wait_for_elementExecuteWait for selector to appear.
-
wait_for_network_idleExecuteWait until the page network becomes idle.
-
xhr_breakpointExecuteSet or remove an XHR/Fetch breakpoint by URL substring match.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.