High-risk tools in AutoBot MCP
15 of the 44 tools in AutoBot MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
call_phoneExecuteMake a phone call (SIM card 1 only)
-
end_callExecuteEnd the current phone call
-
execute_adb_shell_commandExecuteExecutes an ADB command and returns the output or an error.
-
execute_scriptExecuteexecute_script
-
exit_serviceExecuteExit the AutoBot service
-
play_musicExecutePlay music from a URL
-
start_screen_recordingExecuteStart screen recording
-
stop_all_scriptsExecuteStop all running AutoX.js scripts
-
stop_appExecuteStop an application by package name
-
stop_musicExecuteStop playing music
-
stop_screen_recordingExecuteStop screen recording
-
turn_safe_mode_offExecuteTurn off safe mode
-
turn_safe_mode_onExecuteTurn on safe mode
-
turn_screen_offExecuteTurn off the screen (device remains active for control/casting)
-
turn_screen_onExecuteTurn on the screen
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.