Critical-risk tools in Ghost MCP Server

Critical severity Ghost MCP Server MCP Server 6 of 39 tools

6 of the 39 tools in Ghost MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

ghost_delete_member Destructive

Deletes a member from Ghost CMS by ID. This operation is permanent and cannot be undone.
ghost_delete_newsletter Destructive

Deletes a newsletter from Ghost CMS by ID. This operation is permanent and cannot be undone.
ghost_delete_page Destructive

Deletes a page from Ghost CMS by ID. This operation is permanent and cannot be undone.
ghost_delete_post Destructive

Deletes a post from Ghost CMS by ID. This operation is permanent and cannot be undone.
ghost_delete_tag Destructive

Deletes a tag from Ghost CMS by ID. This operation is permanent and cannot be undone.
ghost_delete_tier Destructive

Deletes a tier (membership level) from Ghost CMS by ID. This operation is permanent and cannot be undone.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in Ghost MCP Server

Tools at critical risk

Attacks that target this class

More on Ghost MCP Server

Enforce policy on every Ghost MCP Server tool call.