High-risk tools in Thoughtbox
7 of the 85 tools in Thoughtbox are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
executionExecuteRun code cells and install dependencies
-
hub_actionExecuteExecute a quick Hub action: claim a problem, update status, endorse consensus, or review a proposal
-
notebookExecuteNotebook toolhost for literate programming with JavaScript/TypeScript. Create, manage, and execute interactive notebooks with markdown documentation and executable code cells. ...
-
thoughtbox_executeExecuteRun JavaScript using the \
-
thoughtbox_notebookExecuteNotebook toolhost for literate programming with JavaScript/TypeScript. Create, manage, and execute interactive notebooks with markdown documentation and executable code cells.
-
thoughtbox_theseusExecuteTheseus Protocol: friction-gated refactoring for autonomous agents. Prevents scope drift via boundary locking, test-write locks, epistemic visas, and adversarial auditing (Cassa...
-
thoughtbox_thoughtExecuteAdvanced reasoning tracking tool. Submit thoughts, track state changes, audit decisions, and build branches or revisions.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.