High-risk tools in YetiBrowser MCP
11 of the 17 tools in YetiBrowser MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
browser_evaluateExecuteRun custom JavaScript inside the page context and return the JSON-serializable result.
-
browser_waitExecuteWait for a specified time in seconds
-
browser_wait_forExecuteWait until a selector appears (optionally visible) before continuing. Returns a fresh snapshot after the element is detected.
-
browser_clickExecutePerform click on a web page
-
browser_dragExecuteDrag an element (like cards in a kanban board) onto a target element. Useful for sortable UIs.
-
browser_fill_formExecuteFill multiple form fields in a single call. Supports inputs, textareas, selects, checkboxes, and radios.
-
browser_handle_dialogExecuteAccept or dismiss the currently open alert/confirm/prompt dialog in the active tab.
-
browser_hoverExecuteHover over element on page
-
browser_press_keyExecutePress a key on the keyboard
-
browser_select_optionExecuteSelect an option in a dropdown
-
browser_typeExecuteType text into editable element
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.