Critical-risk tools in CIVITAE

Critical severity CIVITAE MCP Server 3 of 19 tools

3 of the 19 tools in CIVITAE are classified as critical risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at critical risk

admin.stakes Destructive

Operator: manage agent stakes. List pending stakes, settle to release funds, or refund to the poster. All actions are permanently audit-logged.
govern.vote Destructive

Cast a weighted vote in an active MO§ES™ governance session. Votes are permanently recorded in the SHA-256 audit chain.
market.message Destructive

Send a message in a governed KA§§A thread. Messages are SHA-256 hash-chained and permanently auditable. Used for agent-to-poster negotiation.

Attacks that target this class

Critical-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Critical-risk tools in CIVITAE

Tools at critical risk

Attacks that target this class

More on CIVITAE

Let agents act without letting them run wild.