High-risk tools in Metabase MCP Server
6 of the 87 tools in Metabase MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
execute_cardExecuteRun a Metabase card query and return the actual data results - use this to get current data from existing cards, refresh analytical insights, or programmatically access query re...
-
execute_dashboard_cardExecuteExecute a specific card from a dashboard and retrieve fresh data - use this to get current results from dashboard components or test card functionality
-
execute_pivot_card_queryExecuteRun a Metabase card with pivot table formatting to cross-tabulate data with rows and columns - use this to create summary tables, analyze data relationships, or generate matrix-...
-
execute_queryExecuteExecute a native SQL query against a Metabase database - use this for custom data analysis, complex queries, or extracting specific data not available through existing cards
-
rescan_table_field_valuesExecuteTrigger rescan to refresh field values cache with current data - use this to update dropdown options, statistics, or filter values
-
sync_database_schemaExecuteInitiate schema sync to update Metabase metadata cache - use this after database changes to recognize new tables, columns, or relationships
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.