Critical-risk tools in Google Sheets
6 of the 38 tools in Google Sheets are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
GOOGLESHEETS_CLEAR_BASIC_FILTERDestructive 4/5Tool to clear the basic filter from a sheet. Use when you need to remove an existing basic filter from a specific sheet within a Google Spreadsheet.
-
GOOGLESHEETS_CLEAR_VALUESDestructive 4/5Clears cell content (preserving formatting and notes) from a specified A1 notation range in a Google Spreadsheet; the range must correspond to an existing sheet and cells.
-
GOOGLESHEETS_DELETE_DIMENSIONDestructive 4/5Tool to delete specified rows or columns from a sheet in a Google Spreadsheet. Use when you need to remove a range of rows or columns.
-
GOOGLESHEETS_DELETE_SHEETDestructive 4/5Tool to delete a sheet (worksheet) from a spreadsheet. Use when you need to remove a specific sheet from a Google Sheet document.
-
GOOGLESHEETS_SPREADSHEETS_VALUES_BATCH_CLEARDestructive 4/5Tool to clear one or more ranges of values from a spreadsheet. Use when you need to remove data from specific cells or ranges while keeping formatting and other properties intact.
-
GOOGLESHEETS_SPREADSHEETS_VALUES_BATCH_CLEAR_BY_DATA_FILTERDestructive 4/5Clears one or more ranges of values from a spreadsheet using data filters. The caller must specify the spreadsheet ID and one or more DataFilters. Ranges matching any of the spe...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.
More on Google Sheets
Enforce policy on Google Sheets
One command generates a policy scaffold for every server in your MCP config.
npx -y @policylayer/intercept init