Critical-risk tools in Garl Protocol
5 of the 28 tools in Garl Protocol are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
garl_record_action_receiptDestructiveSubmit a GARL Action Receipt v0.1 for any agent action — not just code commits. Hits the dedicated /api/v1/receipts endpoint (the v0.1 envelope). action_type ∈ {code_write, api_...
-
garl_revoke_capability_tokenDestructiveRevoke a capability token. By default cascades to all attenuated descendants — anyone downstream of the revoked token is also marked revoked.
-
garl_should_delegateDestructiveProactive trust guard — check if it's safe to delegate work to another agent. Returns clear yes/no with reasoning. Automatically blocks low-trust, unverified, or anomalous agents.
-
garl_soft_deleteDestructiveGDPR soft delete. Deactivates agent data (recoverable). x-api-key required.
-
garl_undo_actionDestructiveTrigger UETA §10(b) consumer-undo for a reversible receipt. Returns the recorded undo_payload for the caller to actually execute. Refuses if the receipt was classified irreversi...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.