Critical-risk tools in MCP VTEX Server
17 of the 131 tools in MCP VTEX Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
vtex_cancel_orderDestructiveCancel an order
-
vtex_cancel_subscriptionDestructiveCancel a subscription
-
vtex_clear_cartDestructiveClear all items from cart
-
vtex_delete_brandDestructiveDelete a brand
-
vtex_delete_categoryDestructiveDelete a category
-
vtex_delete_cms_templateDestructiveDelete a CMS template
-
vtex_delete_dockDestructiveDelete a dock
-
vtex_delete_documentDestructiveDelete a Master Data document
-
vtex_delete_payment_providerDestructiveDelete a payment provider
-
vtex_delete_priceDestructiveDelete price for a SKU
-
vtex_delete_productDestructiveDelete a product
-
vtex_delete_reviewDestructiveDelete a review
-
vtex_delete_warehouseDestructiveDelete a warehouse
-
vtex_create_gift_cardFinancialCreate a new gift card
-
vtex_create_gift_card_transactionFinancialAdd transaction to gift card (credit or debit)
-
vtex_create_payment_providerFinancialCreate a payment provider configuration
-
vtex_create_subscriptionFinancialCreate a new subscription
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.