Tool accepts arbitrary command input
AI security governance · MCP security
Severity
high
What it is
Tool input schema has a command/code parameter without constraints.
How Igris detects it
Igris's Excessive Permissions Detector flags this during MCP security scans of your configuration.
References
Related MCP security rules
Secure your AI estate with Igris