High-risk tools in Force Fabric MCP Server
13 of the 33 tools in Force Fabric MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
lakehouse_run_table_maintenanceExecuteRun table maintenance (OPTIMIZE with V-Order, Z-ORDER, VACUUM) on a Fabric Lakehouse.
-
eventhouse_auto_optimizeExecuteAUTO-OPTIMIZE: Scans a Fabric Eventhouse for all fixable issues across all KQL databases and applies fixes.
-
eventhouse_fixExecuteAUTO-FIX: Applies fixes to a Fabric Eventhouse.
-
eventhouse_fix_materialized_viewsExecuteAUTO-FIX: Diagnoses and repairs broken materialized views in a Fabric Eventhouse.
-
gateway_fixExecuteAUTO-FIX: Applies fixes to gateway and connection issues.
-
lakehouse_auto_optimizeExecuteAUTO-OPTIMIZE: Discovers ALL Delta tables in a Lakehouse and applies fixes to every table
-
lakehouse_fixExecuteAUTO-FIX: Applies Spark SQL fixes to a Lakehouse via Livy API (no notebooks needed).
-
semantic_model_fixExecuteAUTO-FIX: Uses XMLA/TMSL commands for atomic per-object fixes (measures, columns, tables).
-
semantic_model_optimization_recommendationsExecuteLIVE SCAN: Connects to a Fabric Semantic Model and executes DAX queries (COLUMNSTATISTICS)
-
warehouse_analyze_query_patternsExecuteLIVE SCAN: Connects to a Fabric Warehouse SQL endpoint and analyzes real query execution
-
warehouse_auto_optimizeExecuteAUTO-OPTIMIZE: Scans a Fabric Warehouse for all fixable issues and applies all safe fixes automatically.
-
warehouse_fixExecuteAUTO-FIX: Connects to a Fabric Warehouse and applies fixes for detected issues.
-
warehouse_optimization_recommendationsExecuteLIVE SCAN: Connects to a Fabric Warehouse SQL endpoint and runs real diagnostic queries.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.