Expand description
Tool-scope sandboxing aspect for agentic systems.
Restricts an agent invocation to a declared tool allowlist. Wraps a tool-dispatch join point and rejects calls whose tool name is not in the per-session allowlist before the dispatch happens.
The aspect is novel relative to classical AOP catalogues (logging, caching, rate-limiting): it encodes a capability boundary that is specific to agentic AI architectures, where an LLM may emit tool calls that escape the intended scope of a session.
Structs§
- Tool
Call - Per-call context that the host system must populate before the guarded function runs.
- Tool
Scope Sandbox Aspect - Sandbox aspect that enforces a per-session tool allowlist.
Type Aliases§
- Session
Id - Identifier for a session whose tool calls are being scoped.