High-risk tools in Mc8yp
2 of the 3 tools in Mc8yp are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
executeExecute${getExecuteSafetyPreface(env)} Execute JavaScript code against the Cumulocity API. Use the query tool first to find the right endpoint, then write an async function that calls...
-
queryExecute${getQuerySafetyPreface(env)} Search the bundled and discovered OpenAPI specs by evaluating a JavaScript function. ${getOpenApiNote()} Available bindings (all zero-parameter ...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.