Critical-risk tools in Odoo Claude MCP
17 of the 180 tools in Odoo Claude MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cf_dns_deleteDestructiveDelete a DNS record.
-
cf_tunnel_route_removeDestructiveRemove ingress rule by hostname + delete its CNAME record.
-
ee_unlinkDestructiveRemove symlinks for EE modules from addons path.
-
google_calendar_delete_eventDestructiveDelete a calendar event.
-
memory_deleteDestructiveDelete a memory file from personal or shared storage.
-
odoo_fp_remove_actionDestructiveRemove a tax action map entry from a fiscal position (l10n_bg_tax_admin).
-
odoo_stock_initial_deleteDestructiveDelete wrong opening stock balances — cascade-removes stock.move (is_inventory=TRUE)
-
odoo_stock_mo_delete_draftDestructiveSafely DELETE a draft or cancelled mrp.production with cascade (raw stock.moves,
-
odoo_unlinkDestructiveDelete records by IDs.
-
odoo_web_logoutDestructiveDestroy web session and logout.
-
odoo_website_remove_snippetDestructiveRemove a snippet block from a target HTML field. Locates via snippet_xpath
-
s3_bucket_deleteDestructiveDelete an S3 bucket. Set force=true to delete all objects first.
-
s3_object_deleteDestructiveDelete a single object from a bucket.
-
s3_objects_delete_prefixDestructiveDelete all objects under a prefix in one bucket. Returns count.
-
user_connection_deleteDestructiveDelete a personal connection.
-
telegram_agent_unenrollDestructiveStop agentic handling for a chat.
-
odoo_disconnectDestructiveRemove an Odoo connection.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.