High-risk tools in SpecLock - AI Constraint Engine

High severity SpecLock - AI Constraint Engine MCP Server 4 of 44 tools

4 of the 44 tools in SpecLock - AI Constraint Engine are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

speclock_build_graph Execute 3/5

Build/refresh code dependency graph from imports (JS/TS/Python).
speclock_compile_spec Execute 3/5

Compile natural language (PRDs, READMEs) into structured constraints via Gemini Flash.
speclock_parse_diff Execute 3/5

Parse unified diff into structured changes — imports, exports, symbols, routes, schema detection.
speclock_session_briefing Execute 3/5

Start a new session and get a full briefing.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in SpecLock - AI Constraint Engine

Tools at high risk

Attacks that target this class

More on SpecLock - AI Constraint Engine

Enforce policy on SpecLock - AI Constraint Engine