Critical-risk tools in Paperless-NGX MCP Server
5 of the 16 tools in Paperless-NGX MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
bulk_edit_correspondentsDestructivePerform bulk operations on multiple correspondents: set permissions to control who can assign them to documents, or permanently delete multiple correspondents. Use with caution ...
-
bulk_edit_document_typesDestructivePerform bulk operations on multiple document types: set permissions to control who can assign them to documents, or permanently delete multiple types. Use with caution as deleti...
-
bulk_edit_tagsDestructivePerform bulk operations on multiple tags: set permissions to control access or permanently delete multiple tags at once. Efficient for managing large tag collections.
-
delete_tagDestructivePermanently delete a tag from the system. This removes the tag from all documents that currently use it. Use with caution as this action cannot be undone.
-
bulk_edit_documentsDestructivePerform bulk operations on multiple documents simultaneously: set correspondent/type/tags, delete, reprocess, merge, split, rotate, or manage permissions. Efficient for managing...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.