Critical-risk tools in Mcp Products
7 of the 14 tools in Mcp Products are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
telora_infra_assetDestructiveInfrastructure assets: typed resources (database, container, service, dashboard, storage, proxy, dns, monitoring, ci_cd) within a product. Assets can optionally belong to an env...
-
telora_infra_environmentDestructiveInfrastructure environments: named deployment targets (production, staging, dev) within a product. Each environment groups infrastructure assets and has a status (active, provis...
-
telora_infra_relationshipDestructiveAsset relationships: directed links between infrastructure assets within the same product. Types: connects_to, deploys_to, proxies, depends_on, hosts. Actions: list (by product)...
-
telora_infra_secretDestructiveInfrastructure secrets: encrypted key-value pairs stored per asset using Vault. List and create show names only (no values). Use get to decrypt and reveal a secret value on dema...
-
telora_product_deliveryDestructiveWork packages: individual shippable increments within a focus. Each delivery has acceptance criteria, technical context, and tracks progress through issues. Actions: list delive...
-
telora_product_focusDestructiveExecution roadmap: group deliveries into themed work scopes. Focuses define what the AI daemon works on -- assigning an agent role queues the focus for autonomous execution. Act...
-
telora_product_focus_debugDestructiveFocus debug artifacts: agent-written code-reality views (Mermaid graph + markdown panels) rendered on the focus page Debug tab. One row per (focusId, sectionKind). Section kinds...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.