High-risk tools in Google Flow Browser MCP
6 of the 17 tools in Google Flow Browser MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
flow_connectExecuteLaunch Chrome with the configured Google profile, connect CDP, navigate to Google Flow, and verify account.
-
flow_disconnectExecuteClose the browser and clean up the MCP connection to Google Flow.
-
flow_discover_uiExecuteNavigate to a Google Flow page and discover all interactive elements (buttons, inputs, links, headings). Updates the internal selectors map for robust automation.
-
flow_generate_videoExecuteSet up a video generation in Google Flow. Fills prompt, selects Omni Flash or Veo model, configures settings. NOTE: Does NOT click final Generate (paid feature — stops at ready-...
-
flow_use_grid_architectExecuteOpen Grid Architect in Google Flow, fill theme prompt, shot prompts, engine, ratio, and visual logic settings. Supports batch shot generation for brand campaigns.
-
flow_use_toolExecuteOpen any tool by name in Google Flow and optionally fill its configuration parameters.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.