Critical-risk tools in GitLab Operations

Critical severity GitLab Operations MCP Server 6 of 22 tools

6 of the 22 tools in GitLab Operations are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

delete_ci_variable Destructive 4/5

Remove a CI/CD variable from a project by key
delete_group Destructive 4/5

Delete a GitLab group and all projects within it (cascading delete)
delete_pipeline_trigger Destructive 4/5

Remove a pipeline trigger token, preventing any further pipeline triggers using it
delete_webhook Destructive 4/5

Remove a webhook from a GitLab project
revoke_project_access_token Destructive 4/5

Revoke a project access token, immediately invalidating it for all future API requests
unprotect_branch Destructive 4/5

Remove protection rules from a branch, restoring default push and merge permissions

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in GitLab Operations

Tools at critical risk

Attacks that target this class

More on GitLab Operations

Enforce policy on GitLab Operations