High-risk tools in Termux Browser Pilot

High severity Termux Browser Pilot MCP Server 70 of 148 tools

70 of the 148 tools in Termux Browser Pilot are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

browser_attr_remove Execute

Remove an attribute from an element.
browser_css_remove Execute

Remove injected stylesheet(s).
browser_throttle_clear Execute

Remove network throttling.
browser_console_start Execute

Start capturing browser console output (log, warn, error, info).
browser_console_stop Execute

Stop capturing browser console output (stops re-injection after navigation).
browser_eval Execute

Execute JavaScript in the browser and return the result.
browser_events_start Execute

browser_events_start
browser_events_stop Execute

Stop capturing DOM events and remove listeners.
browser_network_start Execute

Start logging network requests via PerformanceObserver.
browser_network_stop Execute

Stop logging network requests.
browser_responses_start Execute

Start capturing fetch/XHR response bodies.
browser_responses_stop Execute

Stop capturing response bodies (stops re-injection).
browser_restart Execute

Restart the browser daemon (stop + start fresh).
browser_stop Execute

Gracefully stop the browser daemon. Saves session and cleans up.
browser_tab_new Execute

Open a new browser tab, optionally navigating to URL.
browser_wait Execute

Wait for a specified number of seconds.
browser_wait_for Execute

Wait for an element matching CSS selector to appear.
browser_auth_load Execute

Load auth session: restore cookies and navigate to saved URL.
browser_back Execute

Navigate back in browser history. Returns new URL and title.
browser_block Execute

Block URLs matching patterns (substring match on fetch/XHR).
browser_check Execute

Check, uncheck, or toggle a checkbox or radio button.
browser_cookies_load Execute

Load cookies from a JSON file into the browser.
browser_css_inject Execute

Inject a custom stylesheet into the page.
browser_dblclick Execute

Double-click an element by CSS selector.
browser_focus Execute

browser_focus
browser_forward Execute

Navigate forward in browser history. Returns new URL and title.
browser_goto Execute

Navigate browser to URL. Use cloudflare=True for CF-protected sites.
browser_highlight Execute

Highlight elements matching a CSS selector with colored outline.
browser_hover Execute

browser_hover
browser_iframe_eval Execute

Evaluate JavaScript inside a specific iframe.
browser_macro Execute

browser_macro
browser_mouse_locate Execute

browser_mouse_locate
browser_observe_start Execute

Start watching DOM mutations (childList, attributes, characterData).
browser_observe_stop Execute

Stop watching DOM mutations.
browser_pdf Execute

browser_pdf
browser_profile_load Execute

Load a saved browser profile (restores cookies + localStorage).
browser_reload Execute

Reload current page. Returns URL and title.
browser_search_next Execute

Navigate to the next search match and scroll into view.
browser_search_prev Execute

Navigate to the previous search match and scroll into view.
browser_session_load Execute

Load a saved session (opens tabs and navigates to saved URLs).
browser_tab_goto Execute

Switch to a specific tab by index (1-9).
browser_tab_next Execute

Switch to the next browser tab.
browser_tab_prev Execute

Switch to the previous browser tab.
browser_tab_to Execute

browser_tab_to
browser_waitact Execute

browser_waitact
browser_waitfor_response Execute

browser_waitfor_response
browser_attr_set Execute

Set an attribute on an element.
browser_click Execute

browser_click
browser_dialog_dismiss Execute

Configure dialogs to be dismissed (shortcut for accept=False).
browser_dialog_handle Execute

browser_dialog_handle
browser_drag Execute

browser_drag
browser_form_fill Execute

browser_form_fill
browser_geo_set Execute

Override browser geolocation (navigator.geolocation).
browser_headers_set Execute

Set custom HTTP headers injected into fetch/XHR requests.
browser_iframe_click Execute

browser_iframe_click
browser_mock_set Execute

Add a response mock: matching fetch/XHR requests return fake data.
browser_mouse_move Execute

browser_mouse_move
browser_press Execute

Press a keyboard key.
browser_scroll Execute

Scroll the page.
browser_scroll_to Execute

Scroll an element into view using scrollIntoView.
browser_select Execute

browser_select
browser_shadow_click Execute

Click an element inside shadow DOM.
browser_swipe Execute

browser_swipe
browser_throttle_set Execute

Set network throttling to simulate slow connections.
browser_type Execute

browser_type
browser_type_otp Execute

browser_type_otp
browser_upload Execute

Upload a file to an input[type=file] element.
browser_useragent_set Execute

Override navigator.userAgent (JS-side). Re-injected after navigation.
browser_viewport_set Execute

Resize the browser window.
browser_window_switch Execute

Switch focus to a different browser window.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Termux Browser Pilot

Tools at high risk

Attacks that target this class

More on Termux Browser Pilot

Enforce policy on every Termux Browser Pilot tool call.