Critical-risk tools in Contentrain

Critical severity Contentrain MCP Server 3 of 19 tools

3 of the 19 tools in Contentrain are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

contentrain_branch_delete Destructive

Delete a pending contentrain (cr/*) branch that will not be merged — e.g. a branch left behind by a failed operation, or a superseded draft. Only cr/* branches can be deleted; t...
contentrain_content_delete Destructive

Delete content entries. For dictionaries, use "keys" to remove specific keys (omit to delete entire locale file). Changes are auto-committed to git — do NOT manually edit .conte...
contentrain_model_delete Destructive

Delete a model and its content/meta. Changes are auto-committed to git — do NOT manually edit .contentrain/ files.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in Contentrain

Tools at critical risk

Attacks that target this class

More on Contentrain

Let agents act without letting them run wild.