High-risk tools in Superkit
5 of the 22 tools in Superkit are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
call_tool_auto_previewExecuteManages (start/stop/status) the local development server for previewing the application.
-
call_tool_checklistExecuteOrchestrates validation scripts in priority order for incremental validation during development.
-
call_tool_git_managerExecuteManages git and housekeeping tasks (changelog, validateChangelog, archive, housekeeping)
-
call_tool_verify_allExecuteRuns COMPLETE validation including all checks + performance + E2E for deployment.
-
index_contextExecuteManually trigger re-indexing of all super-kit context (agents, skills, workflows). Useful after adding new files. Returns indexing stats.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.