High-risk tools in Chromium ARM64 Browser
11 of the 28 tools in Chromium ARM64 Browser are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
clickExecuteClick an element on the page
-
evaluateExecuteExecute JavaScript in the browser (read-only operations)
-
hoverExecuteHover over an element on the page
-
navigateExecuteNavigate to a URL
-
run_accessibility_auditExecuteRun an accessibility audit on the current page
-
run_audit_modeExecuteRun comprehensive audit mode for optimization
-
run_best_practices_auditExecuteRun a best practices audit on the current page
-
run_debugger_modeExecuteRun debugger mode to debug issues in the application
-
run_nextjs_auditExecuteRun a Next.js specific audit on the current page
-
run_performance_auditExecuteRun a performance audit on the current page
-
start_screencastExecuteStart recording a screencast of browser activity. Captures frames via CDP and encodes to MP4/GIF/WebM on stop.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.