High-risk tools in Lithtrix
5 of the 43 tools in Lithtrix are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
lithtrix_blob_parseExecutePOST /v1/blobs/{blob_id}/parse — extract text/tables; set async=true for QStash. Optional callback_url in JSON body. Requires LITHTRIX_API_KEY.
-
lithtrix_browseExecutePay to be fully autonomous: server-side public web access for agents.
-
lithtrix_passport_auth_verifyExecutePOST /v1/auth/passport/verify — exchange Ed25519 signature for ltx_session_* token.
-
lithtrix_passport_rotateExecutePOST /v1/me/passport/rotate — rotate Ed25519 passport (requires **root** LITHTRIX_API_KEY). Returns private_key once.
-
lithtrix_spawnExecuteSpawn a scoped swarm child (POST /v1/agents/{parent_agent_id}/spawn). Requires root LITHTRIX_API_KEY.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.