Critical-risk tools in Severalnines CCX MCP Server
6 of the 30 tools in Severalnines CCX MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
ccx_delete_databaseDestructiveDelete a database from a CCX datastore. This is DESTRUCTIVE and cannot be undone. Blocked by protection mode (CCX_PROTECT) by default.
-
ccx_delete_datastoreDestructiveDelete a CCX datastore. This is DESTRUCTIVE and cannot be undone. You must set confirm to true. Blocked by protection mode (CCX_PROTECT) by default.
-
ccx_delete_db_userDestructiveDelete a database user from a CCX datastore. This is DESTRUCTIVE and may break applications using this user. You must set confirm to true. Use ccx_list_db_users first to see exi...
-
ccx_delete_firewall_ruleDestructiveRemove a trusted source (firewall rule) from a CCX datastore. This is DESTRUCTIVE and may lock out applications or users. You must set confirm to true. Revokes the specified CIDR
-
ccx_delete_parameter_groupDestructiveDelete a parameter group. This is DESTRUCTIVE and cannot be undone. You must set confirm to true. Blocked by protection mode (CCX_PROTECT) by default.
-
ccx_restore_backupDestructiveRestore a CCX datastore from a backup. This is a DESTRUCTIVE operation that replaces current data with the backup contents. Use ccx_list_backups first to find available backup I...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.