Critical-risk tools in Binalyze AIR MCP Server
17 of the 116 tools in Binalyze AIR MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cancel_task_assignmentDestructiveCancel a task assignment by its ID
-
cancel_task_by_idDestructiveCancel a specific task by its ID
-
delete_auto_asset_tag_by_idDestructiveDelete a specific auto asset tag rule by its ID
-
delete_note_from_caseDestructiveDelete a note from a case by its ID
-
delete_organizationDestructiveDelete an organization by its ID
-
delete_policy_by_idDestructiveDelete a specific policy by its ID
-
delete_repositoryDestructiveDelete an evidence repository by its ID
-
delete_tags_from_organizationDestructiveDelete specific tags from an organization
-
delete_task_assignmentDestructiveDelete a specific task assignment by its ID
-
delete_task_by_idDestructiveDelete a specific task by its ID
-
delete_triage_ruleDestructiveDelete an existing triage rule by ID
-
purge_and_uninstall_assetsDestructivePurge data and uninstall specific assets based on filters. Requires specifying `filter.includedEndpointIds`.
-
remove_endpoints_from_caseDestructiveRemove endpoints from a case based on specified filters
-
remove_tags_from_assetsDestructiveRemove tags from specific assets based on filters. Requires specifying `filter.includedEndpointIds` and `tags`.
-
remove_task_assignment_from_caseDestructiveRemove a specific task assignment from a case
-
remove_user_from_organizationDestructiveRemove a user from an organization
-
uninstall_assetsDestructiveUninstall specific assets based on filters without purging data. Requires specifying `filter.includedEndpointIds`.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.