AI agents call clear_app_data to permanently remove resources in Adb — typically in cleanup and lifecycle workflows. It does its job in a single call, and there is no undo.
Clearing app data is an irreversible operation that permanently removes user data, preferences, and cached content associated with an application. This cannot be undone without backup restoration, making it destructive rather than merely executable. While the action is triggered by the tool itself, the severity of data loss and permanence of the operation elevates it beyond Execute category to Destructive.
From the tool's definition Tool name 'clear_app_data' combined with server description indicating 'app management' capabilities on Android devices via ADB.
Documented attack patterns abuse exactly the kind of access clear_app_data gives an agent:
PolicyLayer is an MCP gateway — it sits between your AI agents and Adb, and nothing reaches the server without passing your rules. This is the rule we recommend for clear_app_data:
{
"version": "1",
"default": "deny",
"hide": [
"clear_app_data"
]
}clear_app_data disappears from the agent's tool list entirely, and any attempt to call it is denied. The rest of the server keeps working.
Free to start. No card required.
清除应用数据. It is categorised as a Destructive tool in the Adb MCP Server, which means it can permanently delete or destroy data. Block by default and require explicit approval.
Register the Adb MCP server in PolicyLayer and add a rule for clear_app_data: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Adb. Nothing to install.
clear_app_data is a Destructive tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.
Yes. Add a rate_limit block to the clear_app_data rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for clear_app_data. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
clear_app_data is provided by the Adb MCP server (wolfcoming/adb_mcp_server). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
Start from Adb, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.
Free to start. No card required.
48 Adb tools catalogued and risk-classified — across an index of 43,000+ MCP servers.