High-risk tools in Maple
5 of the 29 tools in Maple are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
dispatch_downstream_toolExecuteDispatch a tool call to one or more downstream MCP apps via Maple in execution order, then normalize, score, and log outputs into Maple traces.
-
guard_actionExecuteApprove, block, or set pending state for a specific risky step. Blocking quarantines the trace.
-
maple_autoroute_callExecuteOne-call execution path for LLMs: resolve downstream app, optionally auto-connect from marketplace, then call the requested tool through Maple firewall.
-
ml_anomaly_reportExecuteRun embedding-based anomaly detection on a trace, with optional community baseline from shared anonymized traces.
-
replay_forkExecuteFork a trace at a selected step, apply edits, and replay forward in dry-run mode for safe debugging.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.