Critical-risk tools in Xdevplatform/xmcp
14 of the 135 tools in Xdevplatform/xmcp are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
deleteAccountActivitySubscriptionDestructive 4/5Delete an account activity subscription.
-
deleteActivitySubscriptionDestructive 4/5Delete an activity subscription.
-
deleteAllConnectionsDestructive 4/5Delete all webhook or streaming connections for the authenticated app.
-
deleteCommunityNotesDestructive 4/5Delete a community note previously created by the authenticated user.
-
deleteConnectionsByEndpointDestructive 4/5Delete a specific connection endpoint.
-
deleteConnectionsByUuidsDestructive 4/5Delete connections by their unique identifiers.
-
deleteDirectMessagesEventsDestructive 4/5Delete a specific direct message event permanently.
-
deleteListsDestructive 4/5Permanently delete a list and remove all its members.
-
deleteMediaSubtitlesDestructive 4/5Remove subtitle tracks from uploaded video media.
-
deletePostsDestructive 4/5Permanently delete a post created by the authenticated user.
-
deleteUsersBookmarkDestructive 4/5Remove a post from the authenticated user bookmarks.
-
removeListsMemberByUserIdDestructive 4/5Remove a user from a list membership.
-
chatMediaUploadFinalizeFinancial 5/5Finalise a chat media upload and make it ready to attach to a message.
-
finalizeMediaUploadFinancial 5/5Finalise a media upload and make it ready to attach to a post.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.
More on Xdevplatform/xmcp
Enforce policy on Xdevplatform/xmcp
One command generates a policy scaffold for every server in your MCP config.
npx -y @policylayer/intercept init