Critical-risk tools in Monarch

Critical severity Monarch MCP Server 3 of 50 tools

3 of the 50 tools in Monarch are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

delete_transaction Destructive

Delete a transaction from Monarch Money. Warning: This action cannot be undone. Args: transaction_id: The ID of the transaction to delete Returns: ...
delete_transaction_rule Destructive

Delete a transaction rule. Args: rule_id: The ID of the rule to delete (use get_transaction_rules to find IDs) Returns: Confirmation of deletion.
monarch_logout Destructive

Clear the stored Monarch Money session from the system keyring.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in Monarch

Tools at critical risk

Attacks that target this class

More on Monarch

Enforce policy on every Monarch tool call.