High-risk tools in Respan MCP Server
6 of the 60 tools in Respan MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
create_experimentExecuteCreate and run an experiment. Processes a dataset
-
deploy_prompt_versionExecuteDeploy a specific prompt version, making it the active version that experiments (and other workflows) will use. Background: when you create a prompt version, it starts as a dra...
-
deploy_workflowExecuteDeploy a committed workflow/pipeline version as the active (live) version. Calls POST /api/workflows/{id}/deployments/ (the correct platform endpoint — different from the SDK
-
run_evaluatorExecuteRun an evaluator on a single log/span to verify it works. This is for quick verification of one record (e.g. confirm an evaluator scores as expected before running broader expe...
-
test_evaluatorExecuteTest-run a grader with sample inputs to verify it scores correctly BEFORE committing. Required keys in inputs: at least
-
validate_workflowExecuteValidate a workflow by running it against a sample log. Returns validation results and any errors.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.