High-risk tools in Vivado Mcp Agent
14 of the 56 tools in Vivado Mcp Agent are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
vivado_build_bitstreamExecuteBuild bitstream only after DRC/timing gates pass or explicit risk overrides are set.
-
vivado_create_projectExecuteGenerate and run create_project Tcl through Vivado batch mode.
-
vivado_generate_tclExecuteGenerate whitelisted Vivado Tcl for create_project/sim/synth/impl/drc/cdc/bitstream/hardware/program.
-
vivado_handle_requirement_changeExecuteApply a mid-project requirement change and report impacted RTL/TB/XDC/Vivado stages.
-
vivado_prepare_github_releaseExecutePrepare deterministic open-source GitHub release commands and safety checks.
-
vivado_program_deviceExecuteProgram FPGA hardware. This always requires confirm=true and is excluded from workflows.
-
vivado_requirement_gateExecuteWorkflow entry gate that blocks automation until requirements and design_spec are ready.
-
vivado_run_cdcExecuteRun report_cdc Tcl when available, returning clear warnings otherwise.
-
vivado_run_drcExecuteRun report_drc Tcl.
-
vivado_run_implExecuteRun implementation Tcl and generate timing/route reports.
-
vivado_run_simExecuteRun simulation Tcl and save stdout/stderr logs.
-
vivado_run_synthExecuteRun synthesis Tcl and save reports/logs.
-
vivado_run_tclExecuteRun a whitelisted Tcl script through vivado.bat with timeout and captured logs.
-
vivado_workflow_runExecuteRun validate/create_project/sim/synth/impl/drc/cdc/bitstream workflow with safety gates.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.