Critical-risk tools in Pega DX MCP Server
8 of the 65 tools in Pega DX MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
delete_attachmentDestructiveRemove the specified attachment from a case. The API validates user authentication and privileges to delete the attachment based on attachment category configuration. Users can ...
-
delete_caseDestructiveDelete a case that is currently in the create stage
-
delete_case_followerDestructiveRemove a follower from a case, ending their subscription to case notifications and updates. Removes the follower association between case and user.
-
delete_case_tagDestructiveDelete a specific tag from a case by case ID and tag ID
-
delete_data_recordDestructiveDelete a data record based on conditional save plan configured for a savable Data Page. Only supported on data object classes. Requires primary key(s) to uniquely identify the r...
-
delete_participantDestructiveDelete a participant from a Pega case by case ID and participant ID. If no eTag is provided, automatically fetches the latest eTag from the case for seamless operation. Requires...
-
delete_related_caseDestructiveRemove related work association between two cases by deleting a specific relationship
-
remove_case_documentDestructiveRemove a document that is linked to a specific Pega case. This operation permanently removes the link between the document and the case. The document ID and case ID must both be...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.