lark_clear_queue

THE RISK

Critical Risk

Why lark_clear_queue needs a policy

Clearing a message queue is a destructive operation that irreversibly removes all pending messages without the ability to recover them. This fits the Destructive category as it erases data.

From the tool's definition Tool name 'lark_clear_queue' combined with description '清空消息队列' (clear message queue) indicates irreversible deletion of queued messages. The description explicitly states clearing/emptying the queue, which cannot be undone.

Documented attack patterns abuse exactly the kind of access lark_clear_queue gives an agent:

POLICY

How to control lark_clear_queue

PolicyLayer is an MCP gateway — it sits between your AI agents and Feishu Enhance, and nothing reaches the server without passing your rules. This is the rule we recommend for lark_clear_queue:

policy.json

{
  "version": "1",
  "default": "deny",
  "hide": [
    "lark_clear_queue"
  ]
}

lark_clear_queue disappears from the agent's tool list entirely, and any attempt to call it is denied. The rest of the server keeps working.

Create a free account and register Feishu Enhance — nothing to install.
Add this policy — paste it, or build it visually.
Point your MCP client (Claude, Cursor, anything) at your gateway URL.

RESTRICT THIS TOOL →

Free to start. No card required.

EXPLORE

Related tools and policies

More Feishu Enhance tools

Destructive lark_remove_schedule_task 删除定时任务 Execute lark_start_monitor 启动飞书消息监控会话 Execute lark_stop_monitor 停止指定的监控会话 Execute lark_add_schedule_task 添加定时任务 Execute lark_create_async_task 创建异步任务，用于长时间运行的操作 Execute lark_enable_schedule_task 启用或禁用定时任务 Write lark_reply_message 回复指定的飞书消息 Write lark_mark_processed 将指定消息标记为已处理

All 24 Feishu Enhance tools →

Destructive tools on other servers

Android Forensics ADB MCP Server create_full_backup 0xarchive web3_revoke_key Frida Game Hacking MCP clear_scan cPanel MCP Server clear_spam_box

Go deeper

Critical-risk tools in Feishu Enhance → Every critical-risk tool this server exposes, in one view.
All critical-risk MCP tools → Every critical-risk tool across the catalogue, and the policy pattern that contains them.
The MCP Attack Database → Documented attack patterns against MCP deployments — and the policies that stop them.
Blast radius → How much damage one compromised or confused agent can do — and how to bound it.
Tool call approval → Approval gates on individual tool calls: auto-allow, prompt, or deny.
Rate Limiting MCP Tool Calls: A Practical Guide →
MCP Security: Why Prompt Guardrails Aren't Enough →

FAQ

Questions about lark_clear_queue

What does the lark_clear_queue tool do? +

清空消息队列. It is categorised as a Destructive tool in the Feishu Enhance MCP Server, which means it can permanently delete or destroy data. Block by default and require explicit approval.

How do I enforce a policy on lark_clear_queue? +

Register the Feishu Enhance MCP server in PolicyLayer and add a rule for lark_clear_queue: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Feishu Enhance. Nothing to install.

What risk level is lark_clear_queue? +

lark_clear_queue is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.

Can I rate-limit lark_clear_queue? +

Yes. Add a rate_limit block to the lark_clear_queue rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.

How do I block lark_clear_queue completely? +

Set action: deny in the PolicyLayer policy for lark_clear_queue. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.

What MCP server provides lark_clear_queue? +

lark_clear_queue is provided by the Feishu Enhance MCP server (jiaxinghit/feishu-enhance-mcp). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.

Enforce policy on every Feishu Enhance tool call.

Start from Feishu Enhance, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →