Critical-risk tools in Mcp Cloudron
3 of the 36 tools in Mcp Cloudron are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cloudron_delete_userDestructiveDelete a user from the Cloudron instance. WARNING: This is a destructive operation. Use cloudron_validate_operation before deletion to check for potential issues (last admin, ow...
-
cloudron_restore_appDestructiveRestore an application from a backup. DESTRUCTIVE OPERATION - current app data will be replaced. Performs pre-flight validation to check backup exists and storage is sufficient....
-
cloudron_uninstall_appDestructiveUninstall an application with pre-flight safety validation. DESTRUCTIVE OPERATION. First validates via cloudron_validate_operation (checks app exists, no dependencies, backup re...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.