High-risk tools in Coalesce Transform
13 of the 100 tools in Coalesce Transform are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
`build_pipeline_from_intent`ExecuteBuild a pipeline from a natural language goal with automatic entity resolution and node type selection
-
`cache_runs`ExecuteFetch every page of run results, write a full snapshot
-
`create_pipeline_from_plan`ExecuteExecute an approved pipeline plan using predecessor-based creation
-
`diagnose_run_failure`ExecuteClassify errors, surface root cause, suggest actionable fixes
-
`get_environment_health`ExecuteDashboard: node counts, run statuses, failed runs in last 24h, stale nodes, dependency health
-
`get_job_run_details_by_name`ExecuteFuzzy-match one environment job by name and return its latest run details + results
-
`get_run_details`ExecuteRun metadata plus results in one call
-
`get_run_results`ExecuteGet results of a completed run
-
`get_run`ExecuteGet details of a specific run
-
`retry_and_wait`ExecuteRetry a failed run and poll until completion
-
`retry_run`ExecuteRetry a failed run
-
`run_and_wait`ExecuteStart a run and poll until completion
-
`start_run`ExecuteStart a new run; requires Snowflake auth
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.