Critical-risk tools in Todoist Integration Server

Critical severity Todoist Integration Server MCP Server 6 of 39 tools

6 of the 39 tools in Todoist Integration Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

delete-comment Destructive 4/5

Delete a comment from a task in Todoist
delete-label Destructive 4/5

Delete a label from Todoist
delete-project Destructive 4/5

Delete a project in Todoist
delete-section Destructive 4/5

Delete a section from a project in Todoist
delete-task Destructive 4/5

Delete a task from a project in Todoist
remove-shared-label Destructive 4/5

Remove shared label in Todoist

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in Todoist Integration Server

Tools at critical risk

Attacks that target this class

More on Todoist Integration Server

Enforce policy on Todoist Integration Server