Critical-risk tools in LaunchFrame MCP
4 of the 56 tools in LaunchFrame MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cli_cache_clearDestructiveDelete the entire local LaunchFrame service cache. Services will be re-downloaded on next use.
-
cli_deploy_sync_featuresDestructiveSync subscription plan features from the local database to the production database. DESTRUCTIVE: truncates subscription_plan_features on production. Will prompt for confirmation...
-
cli_docker_destroyDestructiveDestroy ALL Docker resources for a LaunchFrame project (containers, volumes, images, network). IRREVERSIBLE — all local data including database volumes will be lost. Will prompt...
-
cli_migration_revertDestructiveRevert the most recently applied TypeORM database migration.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.