Critical-risk tools in Lockstep
4 of the 43 tools in Lockstep are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
discussion_cleanupDestructiveArchive old resolved discussions and optionally delete old archived ones. Use for maintenance.
-
implementer_resetDestructiveReset all implementers to
-
session_resetDestructivePLANNER ONLY: Reset the coordination session for a fresh start. Clears all tasks, locks, notes, and archives discussions. Use this when starting a new project or when data from ...
-
worktree_cleanupDestructiveClean up orphaned worktrees that no longer have active implementers. Call this during maintenance.
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.