High-risk tools in Gsd
7 of the 34 tools in Gsd are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
gsd_commitExecuteCommit planning documents to git
-
gsd_debugExecuteSystematic debugging with persistent state across context resets
-
gsd_execute_phaseExecuteExecute all plans for a phase in parallel waves
-
gsd_quickExecuteExecute ad-hoc task with GSD guarantees
-
gsd_runExecuteRun any GSD command directly (see gsd://help for full list)
-
gsd_spikeExecuteRapidly spike an idea with throwaway experiments
-
gsd_validateExecuteRun GSD validation checks (consistency, health, agents)
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.