High-risk tools in Arcane
19 of the 180 tools in Arcane are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
arcane_build_getExecuteGet detailed information about a specific image build including logs
-
arcane_build_imageExecuteBuild a Docker image from a Dockerfile or Git URL with support for build args and multi-platform builds
-
arcane_build_listExecuteList image builds for an environment with optional filtering by status or search query
-
arcane_build_workspace_browseExecuteBrowse files in the build workspace directory
-
arcane_build_workspace_get_contentExecuteGet the content of a file from the build workspace
-
arcane_build_workspace_uploadExecuteUpload a file to the build workspace
-
arcane_container_restartExecuteRestart a container
-
arcane_container_startExecuteStart a stopped container
-
arcane_container_stopExecuteStop a running container
-
arcane_gitops_syncExecuteTrigger a GitOps sync to pull and deploy latest changes from the repository
-
arcane_job_runExecuteRun a job immediately
-
arcane_project_buildExecuteBuild images for a Docker Compose project
-
arcane_project_restartExecuteRestart all services in a Docker Compose project
-
arcane_project_upExecuteDeploy a Docker Compose project (docker-compose up -d). Use arcane_project_pull_images first to pull latest images.
-
arcane_swarm_scale_serviceExecuteScale a Swarm service to a specific number of replicas
-
arcane_system_containers_start_allExecuteStart all stopped containers in an environment
-
arcane_system_containers_start_stoppedExecuteStart all previously stopped containers in an environment
-
arcane_system_containers_stop_allExecute[HIGH RISK] Stop ALL running containers in an environment
-
arcane_updater_runExecuteRun the auto-updater to check and update all containers with available image updates
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.