High-risk tools in GPT 5 5 x402 Low Cost Agent Tools
8 of the 212 tools in GPT 5 5 x402 Low Cost Agent Tools are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
gpt55_base64_codecExecuteEncode UTF-8 text to Base64/Base64URL or decode Base64/Base64URL text without calling an upstream model. Pay up to $0.0001 per request with x402 USDC on Base or choose the fixed...
-
gpt55_base64_codec_getExecuteEncode UTF-8 text to Base64/Base64URL or decode Base64/Base64URL text without calling an upstream model. GET variant for agents that prefer query parameters. Pay up to $0.0001 p...
-
gpt55_html_entity_codec_getExecuteEscape text for HTML/XML or decode common HTML entities without calling an upstream model. GET variant for agents that prefer query parameters. Pay up to $0.0001 per request wit...
-
gpt55_html_stripExecuteRemove HTML tags, scripts, styles, and common entities from short HTML snippets without calling an upstream model. Pay up to $0.0001 per request with x402 USDC on Base or choose...
-
gpt55_regex_matchExecuteRun a JavaScript regular expression against short text and return bounded matches without calling an upstream model. Pay up to $0.0001 per request with x402 USDC on Base or choo...
-
gpt55_regex_match_getExecuteRun a JavaScript regular expression against short text and return bounded matches without calling an upstream model. GET variant for agents that prefer query parameters. Pay up ...
-
gpt55_sort_lines_getExecuteSort newline-separated text alphabetically or numerically without calling an upstream model. GET variant for agents that prefer query parameters. Pay up to $0.0001 per request w...
-
gpt55_wallet_signing_safety_packExecuteBuild a single wallet/agent pre-signing decision pack from optional EIP-712 typed data, EVM calldata, expected chain, known addresses, and x402 spend policy. Returns risk levels...
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.