Critical-risk tools in LuzzyTool
8 of the 70 tools in LuzzyTool are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
clear_command_historyDestructive【清理操作】清空当前会话的所有命令历史记录。操作不可逆。
-
clear_retrieval_cacheDestructive【按需调用】清除检索引擎的文本索引缓存。
-
db_execute_updateDestructive【数据库】执行 SQLite 写入操作(INSERT/UPDATE/DELETE/CREATE/ALTER/DROP)。
-
delete_fileDestructive【谨慎调用】直接删除文件,无需二次确认,操作不可逆!
-
delete_filesDestructive【批量删除·谨慎调用】使用统一数组接口批量删除多个文件或目录。
-
git_branchDestructive【分支操作】Git 分支管理。action 支持:list(列表)/create(创建)/delete(删除)/rename(重命名)/current(当前分支)。
-
git_remoteDestructive【远程操作】Git 远程仓库管理。action 支持:list(列表)/add(添加)/remove(移除)/get-url(获取URL)。
-
git_stashDestructive【暂存操作】Git stash 管理。action 支持:list(列表)/save(保存)/pop(弹出)/apply(应用)/drop(丢弃)/clear(清空)。
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.