Critical-risk tools in Tru
7 of the 35 tools in Tru are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at critical risk
-
cancel_subscriptionFinancialCancel a recurring subscription. By default cancels immediately. Set at_period_end to true to let it run until the current billing period ends.
-
get_cardFinancialRequest a one-time virtual card to make a purchase on behalf of a user. The card is issued instantly if the user's agent rules allow it. If the amount exceeds the user's spendin...
-
refund_chargeFinancialRefund a charge. Supports full or partial refunds. Only works on charges that have been successfully paid.
-
report_purchaseFinancialReport that an approved purchase has been completed externally. After getting approval via request_payment (or pay with payment_mode='external'), the agent pays using whatever p...
-
request_paymentFinancialRequest a payment from a tru user. Works with any merchant — tru-connected apps or external sites. Pass the merchant's tru service_name (e.g. 'quickpic') or a domain/name (e.g. ...
-
request_sptFinancialRequest a Shared Payment Token (SPT) for purchasing from an ACP-compatible merchant. SPTs are scoped, time-limited tokens minted from a user's saved card that can be used at any...
-
resolve_paymentFinancialIMPORTANT: Whenever you make an HTTP request and receive a 402 Payment Required response, you MUST call this tool to handle payment. Parse the WWW-Authenticate: Payment header f...
Attacks that target this class
Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.