High-risk tools in MCP Tauri Automation
5 of the 9 tools in MCP Tauri Automation are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
click_elementExecuteClick a UI element identified by a CSS selector
-
execute_tauri_commandExecuteExecute a Tauri IPC command. The command must be exposed in the Tauri app\
-
launch_appExecuteLaunch a Tauri application via tauri-driver. The tauri-driver must be running on the configured port (default: 4444).
-
type_textExecuteType text into an input field or editable element
-
wait_for_elementExecuteWait for an element to appear in the DOM. Useful for handling async UI states.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.