High-risk tools in RC Engine
9 of the 53 tools in RC Engine are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
design_pipelineExecuteRun the full Design Intelligence pipeline in sequence: brand_import → design_intake → design_research_brief → copy_research + copy_generate → ux_design → auto-select → design_ch...
-
postrc_gateExecute[Pro] Final checkpoint - ship/no-ship decision. Call after postrc_scan completes and user has reviewed findings. NEVER auto-approve - always present findings summary first. Retu...
-
postrc_scanExecute[Pro] Run AFTER building (Phase 6 Forge complete). Scans code for security vulnerabilities, checks monitoring instrumentation, and optionally runs legal compliance review (Pro t...
-
prc_run_stageExecuteRe-run a specific research stage. In normal flow, stages execute automatically when you approve a checkpoint via prc_gate. Use this tool ONLY to re-run a failed or incomplete st...
-
rc_autopilotExecuteRun remaining RC Method steps automatically from the current step through Step 8 (Production Hardening). Auto-approves checkpoints between steps with a note that they were auto-...
-
rc_forge_allExecutePhase 6 (Forge) BATCH MODE. Builds ALL pending tasks from the approved task list in one call, respecting dependency order. Equivalent to calling rc_forge_task for each task sequ...
-
rc_initExecuteSTART HERE. Unified entry point for the RC Engine pipeline. Call this when starting a new project, resuming where you left off, or checking project status. Responds to:
-
rc_validateExecutePhase 5 (Validate). QUALITY GATE before building. Runs 4 automated checks: anti-pattern scan, token budget audit, scope drift detection, and UX quality assessment. This catches ...
-
trace_map_findingsExecuteRun AFTER both building (Forge) and scanning (postrc_scan). Maps Post-RC findings and RC task completions back to the requirement IDs from trace_enhance_prd. Calculates: impleme...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.