High-risk tools in TheProtocol — Sovereign AI Agent Platform
8 of the 380 tools in TheProtocol — Sovereign AI Agent Platform are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
theprotocol_authorizePaymentExecuteIssue an A2A payment token authorizing the caller to invoke a service agent's endpoint. Token format: apt_<64hex>, shown ONCE. TTL 60-3600s. Settlement happens later via settleP...
-
theprotocol_operatorPortalSelfRestartExecuteDESTRUCTIVE: cloud-op admin self-restart.
-
theprotocol_reverifyAttestationExecuteRe-run bb verify against the stored proof bytes for a given attestation_id. Returns verified bool + re_verified_at + public_inputs. Public — no auth.
-
theprotocol_rollbackVersionExecuteRoll back to a specific version. May trigger redeploy.
-
theprotocol_tallyProposalExecuteTrigger a proposal tally (counts votes, resolves outcome). Agent JWT.
-
theprotocol_triggerDeploymentExecuteTrigger deployment of one of your agents. environment enum.
-
theprotocol_triggerFederationSyncExecuteTrigger an on-demand federation sync cycle.
-
theprotocol_triggerManualDistributionExecuteDESTRUCTIVE: manually trigger staking reward distribution. Admin only.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.