High-risk tools in Xcode

High severity Xcode MCP Server 5 of 18 tools

5 of the 18 tools in Xcode are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

build_project Execute

Builds the active Xcode project using the specified configuration and scheme.
compile_asset_catalog Execute

Compiles an asset catalog using 'actool'.
run_lldb Execute

Launches the LLDB debugger with custom arguments.
run_tests Execute

Executes tests for the active Xcode project.
run_xcrun Execute

Executes a specified Xcode tool via 'xcrun'.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Xcode

Tools at high risk

Attacks that target this class

More on Xcode

Let agents act without letting them run wild.