Critical-risk tools in Home Assistant
12 of the 96 tools in Home Assistant are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
ha_delete_areaDestructive[WRITE] Delete area from Area Registry. MODIFIES area registry - requires approval.
-
ha_delete_automationDestructive[WRITE] Delete automation from Home Assistant. MODIFIES configuration - requires approval.
-
ha_delete_dashboardDestructive[WRITE] Delete dashboard file and remove from configuration.yaml. Restarts Home Assistant. Creates automatic Git backup. DESTRUCTIVE - requires approval!
-
ha_delete_fileDestructive[WRITE] Delete a file from Home Assistant. DESTRUCTIVE - requires approval!
-
ha_delete_helperDestructive[WRITE] Delete a Home Assistant helper from YAML configuration. MODIFIES configuration - requires approval.
-
ha_delete_scriptDestructive[WRITE] Delete script from Home Assistant. MODIFIES configuration - requires approval.
-
ha_delete_themeDestructive[WRITE] Delete a theme from Home Assistant. DESTRUCTIVE - requires approval! After deletion, call ha_reload_themes or restart HA.
-
ha_delete_zoneDestructive[WRITE] Delete a zone. MODIFIES configuration.
-
ha_remove_device_registry_entryDestructive[WRITE] Remove device from Device Registry. MODIFIES device registry - requires approval.
-
ha_remove_entity_registry_entryDestructive[WRITE] Remove entity from Entity Registry. MODIFIES entity registry - requires approval.
-
ha_uninstall_addonDestructive[WRITE] Uninstall a Home Assistant add-on. DESTRUCTIVE - requires approval! Removes add-on and its data.
-
ha_uninstall_hacsDestructive[WRITE] Uninstall HACS (Home Assistant Community Store). Removes HACS directory, storage files, and restarts Home Assistant. DESTRUCTIVE - requires approval!
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.