Critical-risk tools in Tickr
11 of the 71 tools in Tickr are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
delete_attachmentDestructiveDelete an attachment from a ticket
-
delete_commentDestructiveDelete a comment
-
delete_cycleDestructiveDelete a cycle (sprint) from a project
-
delete_epicDestructiveDelete an epic from a project
-
delete_implementation_itemDestructiveDelete an implementation item from a ticket
-
delete_labelDestructiveDelete a label from a project
-
delete_statusDestructiveDelete a workflow status from a project
-
delete_ticketDestructiveDelete a ticket by display number
-
remove_epic_dependencyDestructiveRemove a dependency between two epics
-
remove_project_memberDestructiveRemove a member from a project
-
remove_relationDestructiveRemove a relation from a ticket by relation ID
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.