High-risk tools in Simple Fal
4 of the 8 tools in Simple Fal are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
fal_mediaExecuteInspect, open, reveal, or transform local media files. Prefer workspace-relative paths with workspaceId, and omit outputPath to write outputs back into that workspace.
-
fal_requestExecuteUse after fal_run to wait on a queue request, check status, fetch the final result, retry local downloads, cancel a request, or inspect saved request history.
-
fal_runExecuteSubmit one fal model run. Default wait=submit returns request ids immediately, then use fal_request to wait, inspect status, or fetch the final result.
-
fal_setup_webExecuteControl the local setup panel on demand. Use status to inspect it, start to open it, and stop to close it.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.