Critical-risk tools in HashPilot
10 of the 126 tools in HashPilot are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
addressbook_removeDestructiveRemove an account from the address book by its alias.
-
foundry_removeDestructiveRemove a dependency from the project.
-
hardhat_cleanDestructiveClean cache and artifacts directories. Useful before fresh compilation.
-
token_burnDestructiveBurn tokens from the treasury account, reducing total supply. Requires supply key to be enabled on the token. Operator must have the supply key.
-
token_kyc_revokeDestructiveRevoke KYC (Know Your Customer) status from an account for a token. Prevents further transfers. Operator must have the KYC key.
-
token_wipeDestructiveWipe tokens from an account, removing them from circulation. Requires wipe key to be enabled on the token. Does NOT affect total supply like burn does. Operator must have the wi...
-
account_createFinancialCreate a new Hedera account with customizable parameters. CREATES: New account with auto-generated ECDSA key pair (or use provided public key) FUNDS: Initial HBAR balance from ...
-
stablecoin_manageFinancialEnterprise-grade stablecoin management via Hedera Stablecoin Studio. OPERATIONS: - create: Create compliant stablecoin with role-based controls - info: Get stablecoin details (...
-
token_transferFinancialTransfer tokens from one account to another. Both accounts must be associated with the token first. The sender must sign the transaction - provide senderPrivateKey or ensure sen...
-
transfer_hbarFinancialTransfer HBAR between Hedera accounts. EXECUTES: CryptoTransfer transaction from source to destination REQUIRES: Operator account must be source OR have signing authority COSTS...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.