Critical-risk tools in ZMCPTools
13 of the 70 tools in ZMCPTools are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cancel_scrape_jobDestructiveCancel an active or pending scraping job
-
delete_all_website_pagesDestructiveDelete all pages for a website (useful for clean slate before re-scraping)
-
delete_execution_planDestructiveDelete an execution plan by ID
-
delete_pages_by_idsDestructiveDelete specific pages by their IDs
-
delete_pages_by_patternDestructiveDelete website pages matching URL patterns (useful for cleaning up version URLs, static assets)
-
delete_roomDestructivePermanently delete a communication room and all its messages
-
force_unlock_jobDestructiveForce unlock a stuck scraping job - useful for debugging and recovery
-
remove_file_analysisDestructiveRemove analysis data for a deleted file from the TreeSummary system
-
run_comprehensive_cleanupDestructiveRun comprehensive cleanup for both agents and rooms with detailed reporting
-
cleanup_orphaned_projectsDestructiveClean up orphaned or unused project directories
-
cleanup_stale_agentsDestructiveClean up stale agents with enhanced options and optional room cleanup
-
cleanup_stale_analysesDestructiveClean up stale analysis files older than specified days
-
cleanup_stale_roomsDestructiveClean up stale rooms based on activity and participant criteria
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.