01 · Identity and policy
Agent Auth & Permissions
Scoped identities, managed secrets, and installable policy packs stand between your agents and external tools, so risky actions are explicitly controlled.
- One primary workspace API key for direct public API access.
- Connector grants with allow and deny effects.
- Approval policies with reviewer routing and expiration windows.
- Audit events for auth checks, approvals, and policy decisions.