Transform and style images using PhotoMaker's advanced personalization technology. Create consistent, high-quality image variations with precise subject fidelity and style control. This function enables instant subject personalization without additional training. By providing up to four reference...
Risk signalsHigh parameter count (21 properties)
Part of the Mcp Runware server.
Free to start. No card required.
AI agents may call photoMaker to permanently remove or destroy resources in Mcp Runware. Without a policy, an autonomous agent could delete critical data in a loop with no way to undo the damage. PolicyLayer blocks destructive tools by default and requires explicit human approval before enabling them.
Without a policy, an AI agent could call photoMaker in a loop, permanently destroying resources in Mcp Runware. There is no undo for destructive operations. PolicyLayer blocks this tool by default and only allows it when a human explicitly approves the action.
Destructive tools permanently remove data. Block by default. Only enable with explicit approval workflows.
{
"version": "1",
"default": "deny",
"hide": [
"photoMaker"
]
}See the full Mcp Runware policy for all 11 tools.
These attack patterns abuse exactly the kind of access photoMaker gives an agent. Each links to the full case and the policy that stops it:
Other destructive tools across the catalogue. The same approach applies to each: deny by default, or require human approval.
Transform and style images using PhotoMaker's advanced personalization technology. Create consistent, high-quality image variations with precise subject fidelity and style control. This function enables instant subject personalization without additional training. By providing up to four reference images, you can generate new images that maintain subject fidelity while applying various styles and compositions. IMPORTANT: For inputImages, only accept: 1. Publicly available URLs (e.g., "https://example.com/image.jpg") 2. File paths that can be processed by imageUpload tool first 3. Runware UUIDs from previously uploaded images Workflow: If user provides a local file path, first use imageUpload to get a Runware UUID, then use that UUID here. Args: positivePrompt (str): Text instruction to guide the model (2-300 chars). The trigger word 'rwre' will be automatically prepended if not included in the prompt. inputImages (List[str]): 1-4 reference images of the subject. ACCEPTS ONLY: Public URLs, Runware UUIDs, or file paths (use imageUpload first to get UUID). Must contain clear faces for best results. model (str): SDXL-based model identifier (default: "civitai:139562@344487" - RealVisXL V4.0) height (int): Image height (128-2048, divisible by 64, default: 1024) width (int): Image width (128-2048, divisible by 64, default: 1024) style (str): Artistic style to apply ("No Style", "Cinematic", "Disney Character", "Digital Art", "Photographic", "Fantasy art", "Neonpunk", "Enhance", "Comic book", "Lowpoly", "Line art") strength (int): Balance between subject fidelity and transformation (15-50, default: 15). Lower values provide stronger subject fidelity. numberResults (int): Number of images to generate (1-20, default: 1) steps (int): Number of inference iterations (1-100, default: 20) CFGScale (float): How closely images match the prompt (0-50, default: 7) negativePrompt (str, optional): Text to guide what to avoid in generation scheduler (str, optional): Inference scheduler name outputType (str, optional): Output format ('URL', 'dataURI', 'base64Data', default: 'URL') outputFormat (str, optional): Image format ('JPG', 'PNG', 'WEBP', default: 'JPG') outputQuality (int, optional): Output image quality (20-99, default: 95) uploadEndpoint (str, optional): URL for automatic upload of generated content checkNSFW (bool, optional): Enable NSFW content check includeCost (bool, optional): Include generation cost in response taskUUID (UUID, optional): Unique task identifier clipSkip (int, optional): Additional CLIP model layer skips (0-2) seed (int, optional): Random seed for reproducible results Returns: dict: A dictionary containing the generation result with status, message, result data, parameters, and both image data for direct display and URLs. Example: >>> result = await photoMaker( ... positivePrompt="A professional headshot", ... inputImages=["path/to/reference.jpg"], ... style="Photographic" ... ). It is categorised as a Destructive tool in the Mcp Runware MCP Server, which means it can permanently delete or destroy data. Block by default and require explicit approval.
Register the Mcp Runware MCP server in PolicyLayer and add a rule for photoMaker: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Mcp Runware. Nothing to install.
photoMaker is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.
Yes. Add a rate_limit block to the photoMaker rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for photoMaker. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
photoMaker is provided by the Mcp Runware MCP server (elijahdev0/mcp-runware). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
Deterministic rules across all 11 Mcp Runware tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.
Free to start. No card required.
4,600+ MCP servers and 31,000+ tools scanned and risk-classified.