Critical-risk tools in Google Workspace MCP Server

Critical severity Google Workspace MCP Server MCP Server 7 of 72 tools

7 of the 72 tools in Google Workspace MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

clearSpreadsheetRange Destructive

Clears all values from a specific range in a Google Spreadsheet.
deleteCalendarEvent Destructive

Delete a calendar event.
deleteComment Destructive

Deletes a comment from the document.
deleteFile Destructive

Permanently deletes a file or folder from Google Drive.
deleteGmailFilter Destructive

Delete a Gmail filter.
deleteGmailLabel Destructive

Delete a Gmail label. Cannot delete system labels.
deleteRange Destructive

Deletes content within a specified range (start index inclusive, end index exclusive) from the document or a specific tab.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in Google Workspace MCP Server

Tools at critical risk

Attacks that target this class

More on Google Workspace MCP Server

Enforce policy on every Google Workspace MCP Server tool call.