Critical-risk tools in Bybit MCP Server
8 of the 36 tools in Bybit MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
batch_cancel_orderDestructiveCancel multiple existing orders in a single request. More efficient than canceling orders individually. All orders must be in the same category.
-
cancel_all_ordersDestructiveCancel all pending orders for a category or specific symbol. Use with caution as this cancels ALL open orders matching the criteria.
-
cancel_orderDestructiveCancel a single pending order immediately. ⚠️ Only works on orders that haven
-
place_orderFinancialPlace a new trading order on Bybit. ⚠️ EXECUTES REAL TRADES WITH REAL MONEY when trading is enabled. This is the primary tool for buying and selling cryptocurrencies. Always con...
-
place_trigger_orderFinancialPlace a conditional/trigger order that executes only when market price reaches your trigger condition. ⚠️ EXECUTES REAL TRADES WITH REAL MONEY when triggered. These orders wait ...
-
batch_place_orderFinancialPlace multiple orders in a single request. More efficient than placing orders individually. All orders must be in the same category.
-
batch_amend_orderFinancialModify multiple existing orders in a single request. More efficient than amending orders individually. All orders must be in the same category.
-
set_trading_stopFinancialSet take profit and stop loss orders for an existing position. These orders automatically close your position at specified profit or loss levels to manage risk.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.