Critical-risk tools in Mcp Sitecore
24 of the 153 tools in Mcp Sitecore are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
common-remove-archive-itemDestructiveRemoves items permanently from the specified archive.
-
common-remove-base-template-by-idDestructiveRemoves a base template from a template item by its ID.
-
common-remove-base-template-by-pathDestructiveRemoves a base template from a template item by its path.
-
common-remove-item-version-by-idDestructiveRemoves a version of a Sitecore item by ID.
-
common-remove-item-version-by-pathDestructiveRemoves a version of a Sitecore item by path.
-
common-reset-item-field-by-idDestructiveResets item fields, specified as either names, fields or template fields by ID.
-
common-reset-item-field-by-pathDestructiveResets item fields, specified as either names, fields or template fields by path.
-
indexing-remove-search-index-item-by-idDestructiveRemoves the item with the specified ID from the search index. Supports wildcard filtering for the index name.
-
indexing-remove-search-index-item-by-pathDestructiveRemoves the item with the specified path from the search index. Supports wildcard filtering for the index name.
-
item-service-delete-itemDestructiveDelete a Sitecore item by its ID.
-
presentation-remove-placeholder-setting-by-idDestructiveRemoves placeholder setting from the item specified by ID.
-
presentation-remove-placeholder-setting-by-pathDestructiveRemoves placeholder setting from the item specified by path.
-
presentation-remove-rendering-by-idDestructiveRemoves renderings from an item by owners item ID.
-
presentation-remove-rendering-by-pathDestructiveRemoves renderings from an item by owners item path.
-
presentation-remove-rendering-parameter-by-idDestructiveRemoves the specified rendering parameter from the rendering placed on the item specified by ID.
-
presentation-remove-rendering-parameter-by-pathDestructiveRemoves the specified rendering parameter from the rendering placed on the item specified by path.
-
presentation-reset-layout-by-idDestructiveResets the layout of an item by Id.
-
presentation-reset-layout-by-pathDestructiveResets the layout of an item by path.
-
security-clear-item-acl-by-idDestructiveClears all access rules from a Sitecore item by its ID.
-
security-clear-item-acl-by-pathDestructiveClears all access rules from a Sitecore item by its path.
-
security-remove-domainDestructiveRemoves a Sitecore domain.
-
security-remove-roleDestructiveRemoves a Sitecore role.
-
security-remove-role-memberDestructiveRemoves members from a Sitecore role.
-
security-remove-userDestructiveRemoves the Sitecore user.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.