Critical-risk tools in Mcp Todoist
11 of the 85 tools in Mcp Todoist are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
todoist_comment_deleteDestructiveDelete a comment by its ID
-
todoist_filter_deleteDestructiveDelete a filter from Todoist. This action cannot be undone. Note: Frozen filters (from cancelled subscriptions) cannot be deleted.
-
todoist_invitation_deleteDestructiveDelete/revoke a pending invitation that you sent. Use this to cancel an invitation before it is accepted.
-
todoist_label_deleteDestructiveDelete a label from Todoist
-
todoist_project_deleteDestructiveDelete a project from Todoist. This will also delete all tasks and sub-projects within the project.
-
todoist_project_note_deleteDestructiveDelete a project note by ID.
-
todoist_reminder_deleteDestructiveDelete a reminder. Requires Todoist Pro or Business plan.
-
todoist_section_deleteDestructiveDelete a section and all its tasks from Todoist. Can delete by section ID or section name search.
-
todoist_shared_label_removeDestructiveRemove a shared label from all items in the workspace. This removes the label from all tasks but does not delete the tasks. Requires Todoist Business account.
-
todoist_task_deleteDestructiveDelete a task found by ID or partial name search (case-insensitive)
-
todoist_tasks_bulk_deleteDestructiveDelete multiple tasks at once based on search criteria. Use with caution - this will permanently delete matching tasks.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.