Critical-risk tools in Forgejo

Critical severity Forgejo MCP Server 9 of 103 tools

9 of the 103 tools in Forgejo are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

admin_delete_user Destructive

Delete a user (requires admin privileges)
delete_branch Destructive

Delete a branch from a repository
delete_file Destructive

Delete a file from a repository
delete_issue_comment Destructive

Delete a comment on an issue
delete_label Destructive

Delete a label from a repository
delete_milestone Destructive

Delete a milestone from a repository
delete_org Destructive

Delete an organization
delete_repo Destructive

Delete a repository by owner and name
remove_team_member Destructive

Remove a member from a team

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in Forgejo

Tools at critical risk

Attacks that target this class

More on Forgejo

Enforce policy on every Forgejo tool call.