High-risk tools in MetaMask MCP

High severity MetaMask MCP MCP Server 5 of 29 tools

5 of the 29 tools in MetaMask MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

deploy-contract Execute

Deploy a contract to the network, given bytecode, and constructor arguments.
call Execute

Executing a new message call immediately without submitting a transaction to the network.
sign-message Execute

Sign a message.
switch-chain Execute

Switch the target chain.
write-contract Execute

Execute a write function on a contract.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in MetaMask MCP

Tools at high risk

Attacks that target this class

More on MetaMask MCP

Enforce policy on every MetaMask MCP tool call.