Tool accepts arbitrary command input

AI security governance · MCP security

Severity

high

What it is

Tool input schema has a command/code parameter without constraints.

How Igris detects it

Igris's Excessive Permissions Detector flags this during MCP security scans of your configuration.

References

Related MCP security rules

Secure your AI estate with Igris