High-risk tools in Mcp Browser Use
14 of the 19 tools in Mcp Browser Use are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
initialize_browserExecuteInitialize a new browser instance. Args: headless: Whether to run browser in headless mode task: The task to be performed Returns: Status message
-
waitExecuteWait for the specified number of seconds. Args: seconds (int, optional): Number of seconds to wait. Defaults to 3. Returns: str: A message confirming the...
-
search_googleExecuteSearch the query in Google in the current tab. Args: query (str): The search query to use in Google Returns: str: A message confirming the search was per...
-
click_elementExecuteClick the element with the specified index. Args: index (int): The index of the element to click Returns: str: A message describing the result of the cli...
-
go_backExecuteGo back to the previous page. Returns: str: A message confirming navigation back
-
go_to_urlExecuteNavigate to URL in the current tab. Args: url (str): The URL to navigate to Returns: str: A message confirming navigation
-
input_textExecuteInput text into an interactive element at the specified index. Args: index (int): The index of the element to input text into text (str): The text to input ...
-
open_tabExecuteOpen a URL in a new tab. Args: url (str): The URL to open in the new tab Returns: str: A message confirming the new tab was opened
-
scroll_downExecuteScroll down the page by the specified amount. Args: amount (int, optional): Pixels to scroll down. If None, scrolls one page. Returns: str: A message con...
-
scroll_to_textExecuteScroll to an element containing the specified text. Args: text (str): The text to find and scroll to. Returns: str: A message confirming the scroll actio...
-
scroll_upExecuteScroll up the page by the specified amount. Args: amount (int, optional): Pixels to scroll up. If None, scrolls one page. Returns: str: A message confirm...
-
select_dropdown_optionExecuteSelect an option from a dropdown by its text. Args: index (int): The index of the dropdown element. text (str): The exact text of the option to select. R...
-
send_keysExecutesend_keys
-
switch_tabExecuteSwitch to the tab with the specified page ID. Args: page_id (int): The ID of the page to switch to Returns: str: A message confirming the tab switch
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.