Threat #3

Back to Threats

TOOL POISONING

Blocked
HIGHCONFIRMED

Description

Suspicious tool response modification detected

Confidence Score

82%

Attack Sequence

Pattern Typeprivilege escalation
Confidence91%
SEQUENCE STEPS
get_roles
list_admins
exec_codekey step
update_cfgkey step
Data Flow: blocked auth bypass
Impact: Attempted admin role assignment - BLOCKED by policy

Timeline

Detectedabout 1 hour ago
Created AtMar 20, 2026 11:33:10

Agent

NameDevOps Bot
IDagent-dev-003
TypeDEVOPS

MCP Server

NameGitHub MCP
URLhttp://github-mcp:8080