Critical-risk tools in Airtable MCP

Critical severity Airtable MCP MCP Server 6 of 45 tools

6 of the 45 tools in Airtable MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

batch_delete_records Destructive

Delete multiple records at once (up to 10)
delete_comment Destructive

Delete a comment from an Airtable record. Requires data.recordComments:write scope.
delete_field Destructive

Delete a field from a table (WARNING: This will permanently delete all data in this field)
delete_record Destructive

Delete a record from a table
delete_table Destructive

Delete a table (WARNING: This will permanently delete all data)
delete_webhook Destructive

Delete a webhook

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in Airtable MCP

Tools at critical risk

Attacks that target this class

More on Airtable MCP

Enforce policy on every Airtable MCP tool call.