Critical-risk tools in Omnifocus
9 of the 51 tools in Omnifocus are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
batch_delete_tasksDestructiveDelete multiple tasks at once. More efficient than deleting one by one.
-
delete_folderDestructivePermanently delete a folder from OmniFocus
-
delete_projectDestructivePermanently delete a project from OmniFocus
-
delete_tagDestructivePermanently delete a tag from OmniFocus
-
delete_taskDestructivePermanently delete a task from OmniFocus
-
drop_projectDestructiveMark a project as dropped (cancelled)
-
drop_taskDestructiveMark a task as dropped (cancelled)
-
remove_task_notificationDestructiveRemove a specific notification from a task
-
sync_databaseDestructiveTrigger an OmniFocus sync to push local changes to OmniSync and pull updates from other devices. CALL THIS ONCE at the end of any session that mutated data — especially after ba...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.