Critical-risk tools in GeoServer MCP Server
7 of the 56 tools in GeoServer MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
delete_coveragestoreDestructiveDelete a coveragestore from a workspace. Args: workspace (str): Workspace name. name (str): Coveragestore name. Returns: dict: Response from...
-
delete_layergroupDestructiveDelete a layer group from a workspace. Args: workspace (str): Workspace. name (str): Group to delete. Returns: dict: Result of the delete op...
-
delete_resourceDestructiveDelete a resource from GeoServer. Args: resource_type: Type of resource to delete (workspace, layer, style, etc.) workspace: The workspace containing th...
-
delete_userDestructiveDelete a user by name. Args: username (str): User to remove. Returns: dict: Deletion result.
-
delete_usergroupDestructiveDelete a user group. Args: name (str): Name of group to remove. Returns: dict: Result of group deletion.
-
remove_layer_from_layergroupDestructiveRemove a layer from a group. Args: layer_name (str): Layer. layer_workspace (str): Layer workspace. layergroup_name (str): Group. layerg...
-
reset_geoserverDestructiveReset all GeoServer caches/connections. Returns: str: Result message from reset operation.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.