High-risk tools in MCX (Modular Code Execution)

High severity MCX (Modular Code Execution) MCP Server 5 of 18 tools

5 of the 18 tools in MCX (Modular Code Execution) are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

mcx_batch Execute

Run multiple executions and searches in one call. Bypasses throttling. Examples: - mcx_batch({ executions: [{ code:
mcx_doctor Execute

Run diagnostics to check MCX health: runtime, database, adapters, sandbox.
mcx_execute Execute

Execute JavaScript/TypeScript code in an isolated sandbox. NOT for file/content search - use mcx_find (files) or mcx_grep (content) instead. ## Calling Adapters Adapters are a...
mcx_run_skill Execute

Run a registered MCX skill by name. Available skills: [${skillNames}] ${skillList}
mcx_spawn Execute

Run code in background, returns immediately with task ID. Examples: - mcx_spawn({ code:

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in MCX (Modular Code Execution)

Tools at high risk

Attacks that target this class

More on MCX (Modular Code Execution)

Enforce policy on every MCX (Modular Code Execution) tool call.