High-risk tools in Talon MCP
4 of the 18 tools in Talon MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
talon_mimicExecuteSimulate speaking a phrase to Talon. Executes the phrase as if it were spoken by the user.
-
talon_replExecuteExecute Python code in Talon REPL. Has access to all Talon modules (talon, talon.app, etc.)
-
talon_restartExecuteQuit and relaunch Talon. Use this to apply configuration changes or recover from issues.
-
talon_upgradeKnausjExecuteRun upgrade-knausj to upgrade your Talon community scripts fork (talonhub/community, formerly knausj_talon/knausj). Clones your repo, merges with latest upstream community, hand...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.