High-risk tools in Solar2D MCP Server
6 of the 22 tools in Solar2D MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
run_solar2d_projectExecuteRun a Solar2D project in the simulator. Provide either a path to main.lua or a project directory.
-
start_screenshot_recordingExecuteStart recording screenshots from the Solar2D simulator. Screenshots are captured every 100ms. Can be called while already recording to extend the duration.
-
stop_screenshot_recordingExecuteStop screenshot recording early.
-
preview_social_postExecuteGenerate an HTML preview of a social media post showing how it will appear on each platform (Twitter/Facebook card mockups). Opens in browser. Must preview before publishing. Su...
-
simulate_dragExecuteSimulate a drag/swipe gesture in the Solar2D simulator. Specify start and end bounding boxes using percentages. The gesture moves from the center of the start box to the center ...
-
simulate_tapExecuteSimulate a tap/click in the Solar2D simulator. Specify a bounding box using percentages and the tool taps the center. Example: a button spanning 30-50% horizontally and 60-70% v...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.