Critical-risk tools in Wjx
9 of the 58 tools in Wjx are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
clear_recycle_binDestructive 4/5清空回收站中的问卷。若指定 vid 则仅彻底删除该问卷,否则清空整个回收站。此操作不可逆!
-
clear_responsesDestructive 4/5清空指定问卷的所有答卷数据。此操作不可逆!可选择是否重置答卷序号为0。
-
delete_adminDestructive 4/5批量删除通讯录管理员。uids 为逗号分隔的管理员用户编号列表,一次不能超过100条。
-
delete_contactsDestructive 4/5从通讯录中批量删除成员。此操作不可逆,请谨慎使用!uids 为逗号分隔的用户编号列表。
-
delete_departmentDestructive 4/5批量删除部门。type 指定删除方式:1=按ID删除,2=按名称删除。depts 为 JSON 数组字符串,包含要删除的部门标识列表。
-
delete_participantsDestructive 4/5[Deprecated] 从用户系统中批量删除参与者。此操作不可逆,请谨慎使用!uids 为 JSON 数组字符串,如 ["uid1","uid2"]。
-
delete_sub_accountDestructive 4/5删除子账号(可通过 restore_sub_account 恢复)。请谨慎使用。
-
delete_surveyDestructive 4/5永久删除问卷。可选择彻底删除(不进回收站)。此操作不可逆,请谨慎使用。
-
delete_tagDestructive 4/5批量删除通讯录标签。type 指定删除方式:1=按ID删除,2=按名称删除。tags 为 JSON 数组字符串,包含要删除的标签标识列表。
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.
More on Wjx
Enforce policy on Wjx
One command generates a policy scaffold for every server in your MCP config.
npx -y @policylayer/intercept init