High-risk tools in Nonmem
6 of the 22 tools in Nonmem are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
execute_psn_bootstrapExecuteRun bootstrap using PsN (async). Returns job ID for polling. Requires PsN + NONMEM.
-
execute_psn_vpcExecuteRun VPC using PsN (async). Returns job ID for polling. Requires PsN + NONMEM.
-
run_diagnosticsExecuteRun comprehensive post-run diagnostics: boundary checks, condition number, shrinkage, precision (RSE), convergence warnings. No NONMEM needed.
-
simulate_mrgsolveExecuteRun a simulation using mrgsolve (R). No NONMEM needed. Provide model code or model file path.
-
generate_vpc_dataExecuteGenerate VPC data using mrgsolve + vpc R package. No NONMEM needed. Requires observed data and model.
-
submit_runExecuteSubmit a NONMEM run (async). Returns a job ID for polling. Requires NONMEM installation.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.