High-risk tools in ReverseCraft DevTools MCP
14 of the 46 tools in ReverseCraft DevTools MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
navigate_pageExecuteNavigates the currently selected page to a URL.
-
new_pageExecuteCreates a new page
-
evaluate_on_call_frameExecuteEvaluate a JavaScript expression in the context of a specific call frame when paused.
-
evaluate_scriptExecuteEvaluate JavaScript code inside the currently selected page, similar to DevTools Console.
-
step_intoExecuteStep into a function call at the current line.
-
step_outExecuteStep out of the current function to return to the caller.
-
step_overExecuteStep over to the next line of code without stepping into function calls.
-
add_persistent_scriptExecuteRegister a JavaScript script to execute automatically on every page load. This is useful for persistent hooks (like XHR interceptors, fetch interceptors, etc.) that need to sur...
-
clickExecuteClicks on the provided element
-
press_keyExecutePress a key or key combination for keyboard shortcuts and navigation keys.
-
replace_scriptExecuteReplace a JavaScript code snippet in scripts matching a URL pattern. Uses network interception to modify scripts before execution. **IMPORTANT:** Changes take effect after page...
-
resume_executionExecuteResume JavaScript execution after hitting a breakpoint.
-
set_breakpointExecuteSet a JavaScript breakpoint at a specific line in a file matching a URL pattern. Supports smart snapping for minified code. Returns the CDP breakpoint ID which can be used to re...
-
set_xhr_breakpointExecuteSet an XHR/Fetch breakpoint that pauses execution when a request URL contains the specified substring.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.