Critical-risk tools in EQVPS — Crypto VPS for AI agents
4 of the 16 tools in EQVPS — Crypto VPS for AI agents are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cancel_serviceDestructiveCancel a VPS. DEFAULT `end_of_period`: the server stays active until the end of the already-paid period, then is simply not renewed — NO data loss now, safe. `immediate` DESTROY...
-
reinstall_vpsDestructiveDESTRUCTIVE — all data is lost. REQUIRES confirm = exact hostname (from get_vps_status) or 'DELETE'. Agent must explicitly confirm with the human before calling. Wipes and reins...
-
reset_passwordDestructiveReset the VPS root password. The new password is NOT in this response — retrieve it ONCE via `get_vps_status` (it is also emailed). After that first read it cannot be fetched ag...
-
pay_invoiceFinancialInitiate payment for an owned, unpaid invoice. Returns a PayRam `checkout_url`; the invoice settles (and the VPS provisions) automatically once the on-chain payment confirms.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.