Critical-risk tools in Agent0

Critical severity Agent0 MCP Server 3 of 34 tools

3 of the 34 tools in Agent0 are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

a2a_cancel_task Destructive 4/5

Cancel an in-progress A2A task. Requires configured wallet.
revoke_feedback Destructive 4/5

Revoke previously submitted feedback. Only the original reviewer can revoke. Requires configured wallet.
transfer_agent Financial 5/5

Transfer ownership of an ERC-8004 agent NFT to a new address. Requires configured wallet and agent ownership. This is irreversible.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in Agent0

Tools at critical risk

Attacks that target this class

More on Agent0

Enforce policy on Agent0