Critical-risk tools in Voog
17 of the 105 tools in Voog are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
article_deleteDestructiveDelete an article. IRREVERSIBLE — Voog does not retain
-
article_delete_dataDestructiveDelete a single article.data.<key> (DELETE /articles/{id}/data/{key}).
-
cart_rule_deleteDestructiveDelete a cart rule (DELETE /admin/api/ecommerce/v1/
-
category_deleteDestructiveDelete a category (DELETE /admin/api/ecommerce/v1/categories/
-
comment_deleteDestructiveRemove a comment (`DELETE /articles/{article_id}/comments/{comment_id}`).
-
discount_deleteDestructiveDelete a discount (DELETE /admin/api/ecommerce/v1/discounts/
-
element_deleteDestructiveDelete an element (DELETE /elements/{id}). Voog returns
-
language_deleteDestructiveRemove a language from the site (DELETE /languages/{id}).
-
layout_asset_deleteDestructiveDelete a layout_asset. IRREVERSIBLE. Refuses without
-
layout_deleteDestructiveDelete a layout. IRREVERSIBLE — Voog does not retain
-
page_deleteDestructiveDelete a page. IRREVERSIBLE — Voog does not retain deleted pages.
-
page_delete_dataDestructiveDelete a single page.data.<key> (DELETE /pages/{id}/data/{key}).
-
product_deleteDestructiveDelete a product (DELETE /admin/api/ecommerce/v1/products/
-
redirect_deleteDestructiveDelete a redirect rule. Refuses without force=true.
-
site_delete_dataDestructiveDelete site.data.<key> (DELETE /site/data/{key}).
-
tag_deleteDestructiveRemove a tag (`DELETE /tags/{id}`). Voog returns 204.
-
webhook_deleteDestructiveRemove a webhook (DELETE /webhooks/{id}). Voog returns
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.