Critical-risk tools in Looker MCP Server
27 of the 129 tools in Looker MCP Server are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
delete_boardDestructiveDelete a board. This action cannot be undone.
-
delete_board_itemDestructiveRemove an item from a board section.
-
delete_board_sectionDestructiveDelete a board section and all its items.
-
delete_connectionDestructivedelete_connection
-
delete_credentials_api3Destructivedelete_credentials_api3
-
delete_credentials_emailDestructivedelete_credentials_email
-
delete_credentials_oidcDestructivedelete_credentials_oidc
-
delete_credentials_samlDestructivedelete_credentials_saml
-
delete_credentials_totpDestructivedelete_credentials_totp
-
delete_dashboardDestructiveDelete a dashboard. This action cannot be undone.
-
delete_fileDestructivedelete_file
-
delete_git_branchDestructivedelete_git_branch
-
delete_groupDestructiveDelete a group. This action cannot be undone.
-
delete_lookDestructiveDelete a saved Look. This action cannot be undone.
-
delete_model_setDestructiveDelete a model set. This action cannot be undone.
-
delete_permission_setDestructiveDelete a permission set. This action cannot be undone.
-
delete_projectDestructivedelete_project
-
delete_roleDestructiveDelete a role. This action cannot be undone.
-
delete_scheduleDestructiveDelete a scheduled delivery plan.
-
delete_userDestructiveDelete a user from Looker. This action cannot be undone.
-
delete_user_attributeDestructivedelete_user_attribute
-
delete_user_attribute_user_valueDestructivedelete_user_attribute_user_value
-
remove_group_from_groupDestructiveremove_group_from_group
-
remove_group_userDestructiveRemove a user from a group.
-
reset_datagroupDestructivereset_datagroup
-
reset_to_productionDestructivereset_to_production
-
rollback_to_productionDestructiverollback_to_production
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.