Risk class
DESTRUCTIVE risk class
The risk class for irreversible tool actions such as deletion, credential revocation, or destructive system changes.
DESTRUCTIVE is the highest HARNEXA risk class. It applies when an agent action can delete data, revoke credentials, remove records, break access, or otherwise create irreversible impact.
Why it matters
Destructive operations must never be hidden inside a general-purpose tool call. They need explicit scope, justification, approval, and audit evidence.
How HARNEXA uses it
HARNEXA classifies destructive tool calls separately from read-only and financial actions and requires a stricter approval posture.
FAQ
Questions this definition answers.
Can a HARNEXA public demo run DESTRUCTIVE actions?
No. Public demos are synthetic and do not expose destructive execution.
Why separate DESTRUCTIVE from FINANCIAL?
Because deleting or revoking can have different recovery, approval, and audit requirements from money-moving or customer-impacting work.
Need these definitions mapped to a live commerce workflow, agent estate, or protocol-readiness path?
Book diagnostic sprint