High-risk tools in Code Context
4 of the 97 tools in Code Context are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
executeExecuteRun an INSERT, UPDATE, or DELETE against the context database
-
index_directoryExecuteScan a directory, parse all files, extract metadata/exports and build a dependency graph. Use freshness_check=true to skip re-indexing if the index is recent (<5 min), returning...
-
run_onboardingExecuteRun the full project onboarding sequence — checks and fixes all missing setup steps
-
start_sprintExecuteCreate a sprint with tickets in one call. Creates the sprint, creates tickets from provided list, assigns agents, links to milestone/epic, and returns the full sprint playbook f...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.