High-risk tools in Ros
7 of the 10 tools in Ros are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
cancel_navigationExecuteCancel the active navigation task.
-
chatExecuteInterpret natural-language operator requests with the configured LLM bridge, call robot tools when needed, and return a Korean operator-facing response.
-
navigate_to_posesExecuteSend a Nav2 NavigateToPoses-style command over MQTT.
-
request_plan_routeExecuteDispatch a plan_route request and wait for the response.
-
request_plan_segmentExecuteDispatch a plan_segment request and wait for the response.
-
send_motion_commandExecutePublish a JSON Twist command for direct robot motion.
-
set_initial_poseExecutePublish an initial pose and wait for confirmation.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.