Critical-risk tools in Mcp Azure
3 of the 39 tools in Mcp Azure are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
ado_delete_attachmentDestructiveElimina un adjunto de un Work Item removiendo su relación. Maneja automáticamente concurrencia cuando múltiples cambios afectan el mismo WI.
-
ado_delete_work_itemDestructiveElimina un Work Item en Azure DevOps. Por defecto realiza borrado lógico; usa destroy=true solo para eliminación permanente.
-
ado_remove_work_item_linkDestructiveElimina una relación existente entre dos Work Items de Azure DevOps.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.