// MCP TOOL REFERENCE
High Risk →

open_image_in_browser

Open a high-resolution image of an artwork in the default web browser for viewing. This tool is useful when you want to examine an artwork visually or show it to the user. Works with any valid Rijksmuseum image URL.

How to control open_image_in_browser ↓

WHAT OPEN_IMAGE_IN_BROWSER ON RIJKSMUSEUM MCP SERVER DOES

AI agents invoke open_image_in_browser to trigger actions in Rijksmuseum MCP Server. What it does depends on the arguments the agent supplies, and its effects often reach beyond the immediate call — builds kicked off, notifications sent, workflows started.

THE RISK

High Risk

This tool actively opens the default web browser on the host system, which is an external side-effecting operation (browser execution). While the intent is benign image viewing, it interacts with the OS environment by launching or directing an application, placing it in the Execute category rather than Read.

From the tool's definition 'Open a high-resolution image of an artwork in the default web browser' — triggers an external operation (launching/controlling the browser)

Documented attack patterns abuse exactly the kind of access open_image_in_browser gives an agent:

HOW TO CONTROL OPEN_IMAGE_IN_BROWSER

PolicyLayer is an MCP gateway — it sits between your AI agents and Rijksmuseum MCP Server, and nothing reaches the server without passing your rules. This is the rule we recommend for open_image_in_browser:

policy.json 
{
  "version": "1",
  "default": "deny",
  "tools": {
    "open_image_in_browser": {
      "limits": [
        {
          "counter": "open_image_in_browser_rate",
          "window": "minute",
          "max": 10,
          "scope": "grant"
        }
      ]
    }
  }
}

open_image_in_browser stays usable, but rate-capped — a runaway agent can't fire it dozens of times a minute. Everything else on the server is denied unless you say otherwise.

  1. Create a free account and register Rijksmuseum MCP Server — nothing to install.
  2. Add this policy — paste it, or build it visually.
  3. Point your MCP client (Claude, Cursor, anything) at your gateway URL.
RATE-LIMIT THIS TOOL →

Free to start. No card required.

EXPLORE

More Rijksmuseum MCP Server tools

Read get_artist_timeline Generate a chronological timeline of an artist Read get_artwork_details Retrieve comprehensive details about a specific artwork from the Rijksmuseum collection. R Read get_artwork_image Retrieve detailed image tile information for high-resolution viewing of an artwork. This t Read get_user_set_details Retrieve detailed information about a specific user-created collection in Rijksstudio. Ret Read get_user_sets Retrieve collections created by Rijksstudio users. These are curated sets of artworks that Read search_artwork Search and filter artworks in the Rijksmuseum collection. This tool provides extensive fil

All 7 Rijksmuseum MCP Server tools →

Execute tools on other servers

Frida Game Hacking MCP remove_breakpoint Procmon request_elevation WireMCP capture_packets Pentest Ai run_probe

Go deeper

FAQ

What does the open_image_in_browser tool do? +

Open a high-resolution image of an artwork in the default web browser for viewing. This tool is useful when you want to examine an artwork visually or show it to the user. Works with any valid Rijksmuseum image URL. It is categorised as a Execute tool in the Rijksmuseum MCP Server MCP Server, which means it can trigger actions or run processes. Use rate limits and argument validation.

How do I enforce a policy on open_image_in_browser? +

Register the Rijksmuseum MCP Server MCP server in PolicyLayer and add a rule for open_image_in_browser: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Rijksmuseum MCP Server. Nothing to install.

What risk level is open_image_in_browser? +

open_image_in_browser is a Execute tool with high risk. Execute tools should be rate-limited and have argument validation enabled.

Can I rate-limit open_image_in_browser? +

Yes. Add a rate_limit block to the open_image_in_browser rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block open_image_in_browser completely? +

Set action: deny in the PolicyLayer policy for open_image_in_browser. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides open_image_in_browser? +

open_image_in_browser is provided by the Rijksmuseum MCP Server MCP server (r-huijts/rijksmuseum-mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Rijksmuseum MCP Server tool call.

Deterministic rules across all 7 Rijksmuseum MCP Server tools. Per-identity grants. Full audit log. Live in minutes. Nothing to install.

GOVERN RIJKSMUSEUM →

Free to start. No card required.

7 Rijksmuseum MCP Server tools catalogued and risk-classified — across an index of 42,500+ MCP servers.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.