High-risk tools in Agent Passport System — Cryptographic Identity for AI Agents
9 of the 150 tools in Agent Passport System — Cryptographic Identity for AI Agents are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
aps_aggregate_settlementExecuteAggregate a batch of Attribution Primitives over a half-open settlement period [t0, t1) into a signed SettlementRecord. Each axis (D, P, G, C) produces a per-contributor total w...
-
aps_build_contributor_queryExecuteBuild a contributor-query response: given a signed SettlementRecord and a contributor DID, return per-axis (total_weight, contribution_count, merkle_path, axis_root) plus the fu...
-
aps_compute_compute_axis_weightsExecuteCompute the C-axis fractional weight vector from a list of inference billing records (prompt_tokens, completion_tokens). Returns canonical ComputeAxisEntry[] with 6-digit decima...
-
aps_construct_attribution_primitiveExecuteBuild and sign a four-axis AttributionPrimitive for an action. Axes: D (data sources), P (protocol modules), G (delegation chain), C (compute providers). Returns the complete si...
-
commerce_preflightExecuteRun preflight checks before a purchase. Validates passport, delegation, merchant, and spend limits.
-
execute_with_contextExecute[deprecated in v3.0.0 — use gateway.aeoess.com REST API] Execute an action through the enforcement context.
-
governance_360ExecuteExecute the full governance 360 loop on HTML content: extract governance block → verify signature + content hash → check usage terms → create signed access receipt. This is what...
-
mutualAuthBuildCertificateExecuteBuild and sign a mutual-auth certificate identifying an agent or information system. Returns the signed MutualAuthCertificate object ready to carry into a handshake. The issuer'...
-
parse_governance_block_htmlExecuteExtract a governance block from an HTML page. Looks for APS governance script tags or meta tags.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.