Critical-risk tools in Lithtrix
6 of the 43 tools in Lithtrix are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
lithtrix_blob_deleteDestructiveSoft-delete a blob (DELETE /v1/blobs/{blob_id}). Requires LITHTRIX_API_KEY.
-
lithtrix_keys_revokeDestructiveImmediately revoke a scoped sub-key (DELETE /v1/keys/{key_id}). Root Bearer.
-
lithtrix_passport_revokeDestructivePOST /v1/me/passport/revoke — revoke passport (requires root ltx_* API key).
-
lithtrix_passport_sponsor_revokeDestructivePOST /v1/agents/{sponsor_id}/sponsor/{ward_id}/revoke — start sponsor revoke grace (Bearer must match sponsor_id).
-
lithtrix_passport_stakeFinancialPOST /v1/agents/passport/stake — lock platform credits for passport stake tier (Bearer root ltx_*).
-
lithtrix_passport_unstakeFinancialPOST /v1/agents/passport/unstake — begin unstake cooling period (Bearer root ltx_*).
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.