High-risk tools in MCP Windows

High severity MCP Windows MCP Server 16 of 28 tools

16 of the 28 tools in MCP Windows are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

focus_window Execute

focus_window
minimize_window Execute

minimize_window
mute Execute

mute
next Execute

next
open_file Execute

open_file
open_url Execute

open_url
pause Execute

pause
play Execute

play
press_keys Execute

Simulate pressing a combination of keys. Use any of the following special keys: ctrl, shift, alt, esc, enter, tab, space, left, right, up, down as well the regular characters. O...
previous Execute

previous
send_keyboard_shortcut Execute

send_keyboard_shortcut
set_volume Execute

set_volume
sleep_monitors Execute

sleep_monitors
type_text Execute

type_text
unmute Execute

unmute
wake_monitors Execute

wake_monitors

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in MCP Windows

Tools at high risk

Attacks that target this class

More on MCP Windows

Enforce policy on every MCP Windows tool call.