High-risk tools in Fabric-Analytics-MCP
15 of the 83 tools in Fabric-Analytics-MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
cancel-spark-applicationExecuteCancel a running Spark application
-
execute-fabric-notebookExecuteExecute a notebook in Microsoft Fabric workspace
-
execute-livy-statementExecuteExecute a statement in a Livy session
-
execute-spark-job-definitionExecuteExecute a Spark Job Definition with execution data
-
fabric_transform_notebooksExecutefabric_transform_notebooks
-
run-fabric-notebookExecuteExecute/run a notebook in Microsoft Fabric workspace
-
start-continuous-dataflow-monitoringExecuteStart continuous monitoring session with real-time health checks and alerts
-
stop-monitoring-sessionExecuteStop a specific monitoring session
-
query-fabric-datasetExecuteExecute a query against a Microsoft Fabric dataset
-
create-livy-batchExecuteCreate a Livy batch job
-
create-livy-sessionExecuteCreate a new Livy session for interactive Spark execution
-
create-spark-job-instanceExecuteCreate a Spark job instance from a Spark Job Definition
-
fabric_migrate_spark_pools_to_fabricExecutefabric_migrate_spark_pools_to_fabric
-
fabric_migrate_synapse_to_fabricExecutefabric_migrate_synapse_to_fabric
-
submit-spark-jobExecuteSubmit a Spark job to run on a Lakehouse
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.