High-risk tools in CONTAM MCP
5 of the 22 tools in CONTAM MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
advance_contam_bridge_sessionExecuteUse this when you want to send control/weather adjustments to a running bridge session and optionally advance ContamX to a new simulation time.
-
run_contam_case_matrixExecuteUse this when you need to create multiple named CONTAM scenario folders from one baseline PRJ and optionally run each scenario sequentially.
-
run_contam_simulationExecuteUse this when you want to validate or run a CONTAM .prj model with ContamX and collect the generated files.
-
run_contamxpy_cosimulationExecuteUse this when you need paper-style ContamX API co-simulation: advance a PRJ model step by step, apply supported adjustments, and sample selected zone concentrations, flows, and ...
-
start_contam_bridge_sessionExecuteUse this when you want to launch ContamX in bridge mode and keep an interactive socket session open across multiple MCP calls.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.