Critical-risk tools in Google MCP

Critical severity Google MCP MCP Server 6 of 35 tools

6 of the 35 tools in Google MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

google_calendar_delete_event Destructive

Delete an event from Google Calendar
google_drive_delete_file Destructive

Delete a file from Google Drive
google_gmail_delete_email Destructive

Delete or trash an email
google_oauth_reauthenticate Destructive

Delete existing tokens and start fresh OAuth authentication flow
google_tasks_delete_task Destructive

Delete a task
google_tasks_delete_tasklist Destructive

Delete a task list

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Privilege escalation via admin-only tools
Data exfiltration via tool chaining
Runaway Tool Loops

Critical-risk tools in Google MCP

Tools at critical risk

Attacks that target this class

More on Google MCP

Enforce policy on every Google MCP tool call.