Critical-risk tools in MongoDB Atlas MCP Server
11 of the 76 tools in MongoDB Atlas MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
atlas_search_deleteDestructiveDelete an Atlas Search index
-
cloud_provider_access_deleteDestructiveDelete a cloud provider access role
-
cluster_deleteDestructiveDelete a cluster
-
custom_db_role_deleteDestructiveDelete a custom database role
-
datalake_deleteDestructiveDelete a Data Lake
-
organization_deleteDestructiveDelete an organization
-
project_access_list_deleteDestructiveDelete an IP access list entry from the project
-
project_deleteDestructiveDelete a project by ID
-
project_remove_userDestructiveRemove a user from a project
-
project_whitelist_deleteDestructiveDelete an IP whitelist entry from the project (legacy)
-
user_deleteDestructiveDelete a database user
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.