High-risk tools in Warden Magento MCP Server

High severity Warden Magento MCP Server MCP Server 10 of 11 tools

10 of the 11 tools in Warden Magento MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

warden_composer Execute

Run Composer commands inside the php-fpm container
warden_init_project Execute

Initialize a new Warden project with Magento 2 environment
warden_magento_cli Execute

Run bin/magento command inside the php-fpm container
warden_php_script Execute

Run a PHP script inside the php-fpm container
warden_run_unit_tests Execute

Run unit tests using PHPUnit in the php-fpm container
warden_start_project Execute

Start a Warden project environment
warden_start_svc Execute

Start Warden system services
warden_stop_project Execute

Stop a Warden project environment
warden_stop_svc Execute

Stop Warden system services
warden_db_query Execute

Run a SQL query in the Warden database

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Warden Magento MCP Server

Tools at high risk

Attacks that target this class

More on Warden Magento MCP Server

Enforce policy on every Warden Magento MCP Server tool call.