Critical-risk tools in Executor

Critical severity Executor MCP Server 6 of 29 tools

6 of the 29 tools in Executor are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

connections.remove Destructive

Remove a saved connection and its produced tools by owner, integration, and connection name.
delete Destructive

A destructive tool
delete_titled Destructive

A destructive tool with a title annotation
oauth.cancel Destructive

Cancel an in-flight OAuth authorization-code session by state after the user abandons the flow.
oauth.clients.remove Destructive

Remove an owner-scoped OAuth client by owner and slug. Existing connections are not cascaded.
policies.remove Destructive

Remove a tool policy by id + owner.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in Executor

Tools at critical risk

Attacks that target this class

More on Executor

Enforce policy on every Executor tool call.