Critical-risk tools in Contentful

Critical severity Contentful MCP Server 12 of 61 tools

12 of the 61 tools in Contentful are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

delete_ai_action Destructive 4/5

Permanently delete an AI action
delete_asset Destructive 5/5

Permanently delete an asset
delete_concept Destructive 4/5

Remove a taxonomy concept
delete_concept_scheme Destructive 5/5

Remove a concept scheme
delete_content_type Destructive 5/5

Permanently delete a content type
delete_entry Destructive 5/5

Permanently delete a content entry
delete_environment Destructive 5/5

Permanently delete an environment
delete_locale Destructive 5/5

Remove a locale from the environment
unpublish_ai_action Destructive 4/5

Unpublish an AI action
unpublish_asset Destructive 4/5

Unpublish an asset
unpublish_content_type Destructive 4/5

Unpublish a content type
unpublish_entry Destructive 4/5

Unpublish a content entry

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in Contentful

Tools at critical risk

Attacks that target this class

More on Contentful

Enforce policy on Contentful