Critical-risk tools in Noteplan
6 of the 13 tools in Noteplan are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
noteplan_embeddingsDestructiveEmbeddings/vector search operations.\n\nActions:\n- status: Get embeddings config and index status\n- search: Semantic search over index (requires query)\n- sync: Build/refresh ...
-
noteplan_filtersDestructiveSaved filter operations: list, get, get_tasks, list_parameters, save, rename, delete.\n\nActions:\n- list: List saved filters\n- get: Get one filter with parsed params (requires...
-
noteplan_foldersDestructiveFolder and space operations: list, find, resolve, create, move, rename, delete folders, or list spaces.\n\nActions:\n- list: List folders with optional filtering\n- find: Find f...
-
noteplan_manage_noteDestructiveManage notes: create, update, delete, move, restore, rename, or manage frontmatter properties.\n\nActions:\n- create: Create a project note (requires title). Creates immediately...
-
noteplan_memoryDestructiveUser preference memory operations.\n\nActions:\n- list: List/search stored memories\n- save: Save a new memory (requires content)\n- update: Update memory content/tags (requires...
-
noteplan_pluginsDestructivePlugin management: list, create, delete, install, read source/log, update HTML, screenshot.\n\nActions:\n- list: List installed plugins\n- list_available: List plugins from onli...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.