High-risk tools in OpenLink MCP Server for ODBC
7 of the 32 tools in OpenLink MCP Server for ODBC are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
chat_prompt_completeExecuteTool to use the OPAL backend to complete chat prompt
-
query_databaseExecuteExecute a SQL query and return results in JSON, JSONL or MD format.
-
query_database_jsonlExecuteExecute a SQL query and return results in JSONL format.
-
query_database_mdExecuteExecute a SQL query and return results in MD format.
-
run_readonly_queryExecuteRun a read-only SELECT/WITH SQL query against the configured ODBC database. Results are row-limited by default. Use all_rows=true to return all matching rows.
-
spasql_queryExecuteExecute a SPASQL query and return results.
-
virtuoso_support_aiExecuteTool to use the Virtuoso AI support function
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.