Critical-risk tools in Alpha Arcade
8 of the 20 tools in Alpha Arcade are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
amend_orderFinancialEdit an existing unfilled order in-place (change price, quantity, or slippage). Faster and cheaper than cancel + recreate. Only works on orders with zero quantity filled. Collat...
-
cancel_orderDestructiveCancel an open order. Requires escrowAppId (from create_limit_order or get_open_orders) and orderOwner (the Algorand address that created it). Refunds USDC/tokens and ~0.957 ALG...
-
claimFinancialClaim USDC from a resolved market by redeeming outcome tokens. Winning = 1:1 USDC. Losing = burned.
-
propose_matchFinancialPropose a match between an existing maker order and the configured wallet as taker. The maker escrowAppId and address can be found via get_orderbook. quantityMatched is in micro...
-
split_sharesFinancialSplit USDC into equal YES and NO outcome tokens. 1 USDC (1000000 microunits) = 1 YES + 1 NO.
-
create_limit_orderFinancialPlace a limit order on a prediction market. Price and quantity in microunits (500000 = $0.50, 1000000 = 1 share). Locks ~0.957 ALGO collateral (refunded on cancel/fill). Returns...
-
create_market_orderFinancialPlace a market order with auto-matching against best available counterparty orders. Price, quantity, and slippage in microunits (500000 = $0.50, 1000000 = 1 share, 50000 = $0.05...
-
merge_sharesFinancialMerge equal YES and NO outcome tokens back into USDC. 1 YES + 1 NO = 1 USDC.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.