jasoncouture/llama-shears
1
0
Fork 0
Code Issues 14 Pull requests Projects Releases Packages 6 Wiki Activity Actions

Tool security model #23

New issue
Closed
opened 2026-05-07 01:29:53 -04:00 by jasoncouture · 1 comment
jasoncouture commented 2026-05-07 01:29:53 -04:00 (Migrated from github.com)
Copy link

Authorization model for which agents / tools / scopes can run what. Today every loaded tool is callable by every agent that sees its source — fine for a single-operator dev box, not fine for multi-tenant or internet-exposed deployments.

Depends on / pairs with unsafe-tools gating (#24).

Tracked in TASKS.md.

Authorization model for which agents / tools / scopes can run what. Today every loaded tool is callable by every agent that sees its source — fine for a single-operator dev box, not fine for multi-tenant or internet-exposed deployments. Depends on / pairs with unsafe-tools gating (#24). Tracked in [TASKS.md](../blob/main/TASKS.md).
jasoncouture commented 2026-05-24 19:01:00 -04:00 (Migrated from github.com)
Copy link

Tool security model landed in #109IToolFilter gates tool discovery (ModelContextProtocolToolDiscovery) with per-agent AgentBehaviorOptions (Sources, Tools, Skills) and policies Default / Allow / Deny / Disable. Sources and tools are filtered before they reach the language model's tool list — the model cannot select what it does not see.

Tool security model landed in #109 — `IToolFilter` gates tool discovery (`ModelContextProtocolToolDiscovery`) with per-agent `AgentBehaviorOptions` (`Sources`, `Tools`, `Skills`) and policies `Default` / `Allow` / `Deny` / `Disable`. Sources and tools are filtered before they reach the language model's tool list — the model cannot select what it does not see.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
main
No results found.
Labels
Clear labels   
bug
Something isn't working

  
commercial
Commercial / paid offering

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
feature
Net-new functionality

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
wontfix
This will not be worked on

No labels
bug
commercial
documentation
duplicate
enhancement
feature
good first issue
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
jasoncouture/llama-shears#23
No description provided.