Critical-risk tools in TaskFlow MCP

Critical severity TaskFlow MCP MCP Server 4 of 23 tools

4 of the 23 tools in TaskFlow MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

delete_note Destructive

Delete a note from a request.\n\n
delete_subtask Destructive

Delete a subtask from a task. Provide
delete_task Destructive

Delete a specific task from a request. Only uncompleted tasks can be deleted.\n\n
remove_prompts Destructive

Remove the entire prompts configuration or specific fields from it.\n\n

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in TaskFlow MCP

Tools at critical risk

Attacks that target this class

More on TaskFlow MCP

Enforce policy on every TaskFlow MCP tool call.