Remove a screenshot file created by capture_screenshot.
AI agents call cleanup_screenshot_file to permanently remove resources in Macinput — typically in cleanup and lifecycle workflows. It does its job in a single call, and there is no undo.
The tool explicitly removes/deletes a file. Deletion of files is irreversible without a backup, placing it in the Destructive category. Severity is medium because it only targets screenshot files created by this server, limiting blast radius to those specific temporary/captured files rather than arbitrary system files.
From the tool's definition 'Remove a screenshot file created by capture_screenshot' — permanently deletes a file from the filesystem, which is irreversible.
Attacks that exploit this kind of access
Remove a screenshot file created by capture_screenshot. It is categorised as a Destructive tool in the Macinput MCP Server, which means it can permanently delete or destroy data. Block by default and require explicit approval.
Register the Macinput MCP server in PolicyLayer and add a rule for cleanup_screenshot_file: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Macinput. Nothing to install.
cleanup_screenshot_file is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.
Yes. Add a rate_limit block to the cleanup_screenshot_file rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for cleanup_screenshot_file. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
cleanup_screenshot_file is provided by the Macinput MCP server (sigma711/macinput). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
cleanup_screenshot_file is one line of Macinput's registry record.
The record carries the whole server: verified identity, auth posture, risk grade, every tool classified, recommended policy — re-checked continuously.
Teams ship this data inside their own products. See what a licence covers →