Critical-risk tools in Llama
6 of the 58 tools in Llama are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
brief_deleteDestructiveSoft-delete a brief block (reversible via brief_restore). Locked blocks are refused.
-
html_resetDestructiveSoft-delete the latest HTML version for a deal. The /browse
-
memo_resetDestructiveReset memo state. Default drops only the manual override row
-
skill_correction_deleteDestructiveSoft-delete a recorded skill correction by id.
-
wiki_deleteDestructiveSoft-delete a wiki page (reversible). The entry stops appearing in
-
pitch_finalizeFinancialClear the local pitch session state. Note: this does not force the
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.