High-risk tools in SSH MCP Server
5 of the 15 tools in SSH MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
execute_sshExecuteLegacy compatibility - Execute command on remote Linux host via SSH
-
execute_sudoExecuteLegacy compatibility - Execute command with sudo on remote Linux host
-
ssh_execute_sshExecuteExecute command on remote Linux host via SSH
-
ssh_execute_sudoExecuteExecute command with sudo on remote Linux host
-
ssh_puppet_noopExecuteRun Puppet agent in no-op mode (dry run) with verbose output
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.