Critical-risk tools in AWS MCP Server

Critical severity AWS MCP Server MCP Server 14 of 54 tools

14 of the 54 tools in AWS MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

delete-ami Destructive

Delete an AMI
delete-bucket Destructive

Delete an S3 bucket in the given region
delete-db-instance Destructive

Delete a given RDS DB instance in the given region
delete-instance-tag Destructive

Delete instance tag
delete-internet-gateway Destructive

Delete an internet gateway by ID in the given region
delete-key-pair Destructive

Delete a key pair in the given region
delete-route-table Destructive

Delete a route table in the given region
delete-security-group Destructive

Delete a security group in the given region
delete-subnet Destructive

Delete a subnet by subnet ID in the given region
delete-vpc Destructive

Delete a VPC by VPC ID in the given region
revoke-security-group-egress Destructive

Revoke a security group egress in the given region
revoke-security-group-ingress Destructive

Revoke a security group ingress in the given region
detach-internet-gateway Destructive

Detach an internet gateway from a VPC
terminate-ec2-instance Destructive

Terminate an EC2 instance in a given region

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in AWS MCP Server

Tools at critical risk

Attacks that target this class

More on AWS MCP Server

Enforce policy on every AWS MCP Server tool call.