High-risk tools in Vibekit
13 of the 49 tools in Vibekit are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
vibekit_agent_compactExecuteCompact the agent
-
vibekit_agent_stopExecuteStop a currently running agent request.
-
vibekit_chatExecuteSend a message to an app
-
vibekit_database_queryExecuteRun a SQL query against an app
-
vibekit_deployExecuteDeploy a GitHub repo to VibeKit hosting.
-
vibekit_execExecuteRun a shell command inside an app
-
vibekit_redeployExecuteRedeploy an existing hosted app to pick up the latest code changes.
-
vibekit_restart_appExecuteRestart a hosted app (zero-downtime reload).
-
vibekit_run_qaExecuteRun automated QA tests on a hosted app. Takes a screenshot and tests key flows.
-
vibekit_start_appExecuteStart a stopped hosted app.
-
vibekit_stop_appExecuteStop a hosted app.
-
vibekit_submit_taskExecuteSubmit an async coding task to VibeKit. The AI will write code, commit to GitHub, and optionally deploy. Returns a task ID to poll for results.
-
vibekit_wait_for_taskExecuteWait for a task to complete, polling every 5 seconds.
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.