Critical-risk tools in WP Astro MCP
5 of the 60 tools in WP Astro MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
site_removeDestructiveDeactivate a site (soft delete, can be reactivated).
-
sync_deleteDestructiveRemove local Markdown files for posts that have been deleted or trashed in WordPress. Also cleans up URL map entries.
-
sync_fullDestructiveComplete content sync: check for changes → pull new/updated posts → delete removed posts → update caches → optionally commit to git. One command to keep the Astro site current w...
-
sync_resetDestructiveClear sync tracking data to force a full re-sync on next sync_pull. Does not delete content files.
-
export_cleanupDestructiveDelete export job data from database (does not delete files). Requires confirm=true.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.