Critical-risk tools in AppFlowy MCP
7 of the 73 tools in AppFlowy MCP are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
appflowy_delete_chatDestructiveDelete an AI chat.
-
appflowy_delete_page_from_trashDestructivePermanently delete a trashed page.
-
appflowy_delete_quick_noteDestructiveDelete a quick note.
-
appflowy_delete_workspaceDestructivePermanently delete a workspace and everything in it. Irreversible.
-
appflowy_empty_trashDestructivePermanently delete ALL trashed pages in a workspace. Irreversible.
-
appflowy_move_page_to_trashDestructiveMove a page to trash.
-
appflowy_remove_membersDestructiveRemove members from a workspace by email.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.