Critical-risk tools in Hetzner MCP Server
7 of the 40 tools in Hetzner MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
hetzner_delete_serverDestructiveDelete a server permanently. ⚠️ This action is irreversible. All data on the server will be lost.
-
hetzner_delete_ssh_keyDestructiveDelete an SSH key from the project. This does NOT affect existing servers that were created with this key. They will continue to work with the key.
-
hetzner_delete_storage_boxDestructiveDelete a Storage Box permanently. ⚠️ DESTRUCTIVE: All data, snapshots, and subaccounts will be permanently deleted. This action cannot be undone.
-
hetzner_delete_storage_box_snapshotDestructiveDelete a snapshot from a Storage Box. ⚠️ DESTRUCTIVE: The snapshot will be permanently deleted and cannot be recovered.
-
hetzner_delete_storage_box_subaccountDestructiveDelete a subaccount from a Storage Box.
-
hetzner_rollback_storage_box_snapshotDestructiveRoll a Storage Box back to a previous snapshot. ⚠️ DESTRUCTIVE: this overwrites the current state of the Storage Box. Any data written after the snapshot was taken will be lost...
-
hetzner_create_storage_boxFinancialCreate a new Storage Box. ⚠️ **This action will incur costs** based on the selected storage box type. Required parameters: - storage_box_type: Plan name (e.g.,
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.