High-risk tools in Smart Home Control MCP Server
13 of the 26 tools in Smart Home Control MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
diagnose_tv_connectionExecuteRun diagnostics on TV connection to help troubleshoot issues.
-
play_netflix_showExecutePlay a specific show or movie on Netflix.
-
play_youtube_videoExecuteSearch and play videos on YouTube TV with improved navigation.
-
tv_muteExecuteMute/unmute TV.
-
tv_navigateExecuteNavigate TV (back, home).
-
tv_open_appExecuteOpen an app on TV (netflix, youtube, home).
-
tv_press_keyExecutePress specific keys on TV remote.
-
tv_search_and_playExecuteSearch for and play content on TV streaming apps.
-
tv_send_textExecuteSend text input to TV (useful for search fields).
-
tv_volume_downExecuteDecrease TV volume.
-
tv_volume_upExecuteIncrease TV volume.
-
youtube_navigate_and_playExecuteNavigate YouTube interface and play content.
-
youtube_voice_search_workaroundExecuteAlternative YouTube search that uses voice search interface.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.