High-risk tools in MCP SSH Orchestrator

High severity MCP SSH Orchestrator MCP Server 6 of 13 tools

6 of the 13 tools in MCP SSH Orchestrator are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

ssh_cancel Execute

Request cancellation for a running task.
ssh_cancel_async_task Execute

Cancel a running async task.
ssh_run Execute

Execute SSH command with policy, network checks, progress, timeout, and cancellation.
ssh_run_async Execute

Start SSH command asynchronously (SEP-1686 compliant).
ssh_run_on_tag Execute

Execute SSH command on all hosts with a tag (with network checks).
ssh_reload_config Execute

Reload configuration files.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in MCP SSH Orchestrator

Tools at high risk

Attacks that target this class

More on MCP SSH Orchestrator

Enforce policy on every MCP SSH Orchestrator tool call.