High-risk tools in Sage MCP

High severity Sage MCP MCP Server 3 of 359 tools

3 of the 359 tools in Sage MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

bitbucket_trigger_pipeline Execute

Trigger a new pipeline run for a branch or commit
excel_run_formula Execute

Write a formula to a specific cell and return the computed result. The formula is written, the cell is read back to get the calculated value.
gitlab_retry_pipeline Execute

Retry all failed jobs in a pipeline

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Sage MCP

Tools at high risk

Attacks that target this class

More on Sage MCP

Enforce policy on every Sage MCP tool call.