Critical-risk tools in Mycase
19 of the 112 tools in Mycase are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
delete_callDestructiveDelete a call log entry by ID.
-
delete_caseDestructiveDelete a case by ID.
-
delete_case_stageDestructiveDelete a case stage by ID.
-
delete_clientDestructiveDelete a client by ID.
-
delete_companyDestructiveDelete a company by ID.
-
delete_custom_fieldDestructiveDelete a custom field by ID.
-
delete_custom_field_optionDestructiveDelete an option from a list-type custom field.
-
delete_documentDestructiveDelete a document by ID.
-
delete_document_versionDestructiveDelete a specific version of a document.
-
delete_eventDestructiveDelete a calendar event by ID.
-
delete_expenseDestructiveDelete an expense entry by ID.
-
delete_locationDestructiveDelete a location by ID.
-
delete_noteDestructiveDelete a note by ID.
-
delete_people_groupDestructiveDelete a people group by ID.
-
delete_practice_areaDestructiveDelete a practice area by ID.
-
delete_taskDestructiveDelete a task by ID.
-
delete_time_entryDestructiveDelete a time entry by ID.
-
delete_webhook_subscriptionDestructiveDelete a webhook subscription by ID.
-
record_invoice_paymentFinancialRecord a payment against an invoice. date: YYYY-MM-DD (required).
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.