High-risk tools in AAP Enterprise MCP Server

High severity AAP Enterprise MCP Server MCP Server 6 of 69 tools

6 of the 69 tools in AAP Enterprise MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

restart_activation Execute

Restart an activation.
run_adhoc_command Execute

Run an ad-hoc Ansible command against inventory hosts.
run_job Execute

Run a job template by ID, optionally with extra_vars.
sync_inventory_source Execute

Manually trigger a sync for an inventory source.
lint_playbook Execute

lint_playbook
update_project Execute

Trigger a project update (SCM sync) for a specific project.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in AAP Enterprise MCP Server

Tools at high risk

Attacks that target this class

More on AAP Enterprise MCP Server

Enforce policy on every AAP Enterprise MCP Server tool call.