Critical-risk tools in Smallest
4 of the 70 tools in Smallest are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
delete_agentDestructiveArchive (soft-delete) an agent by its ID. Archived agents are inactive. Cannot archive agents with active campaigns. Unarchiving is not supported — to restore an agent, use app....
-
delete_audienceDestructiveDelete an audience by ID. Cannot delete an audience that is linked to a campaign — remove or delete the campaign first.
-
delete_audience_membersDestructiveRemove specific members from an audience by their member IDs. Use get_audience_members or search_audience_members to find member IDs. If all members are removed, the audience it...
-
delete_campaignDestructiveDelete a campaign. This permanently removes the campaign and its execution data.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.