Expand description
Access Manager — least-privilege security for agents.
Inspired by OWASP Agentic AI security guidelines:
- Least privilege by default
- Agent identity and audit logging
- Sandbox boundaries (path restrictions)
- Tool access control (which agent can use which tools)
Every agent starts with minimal permissions and must be explicitly granted access to tools, paths, and network resources.
Structs§
- Access
Manager - Access Manager.
- Agent
Permissions - Permissions for a single agent.
- Audit
Entry - An entry in the security audit log.
- Pending
Approval - Human-in-the-loop approval request.
- Permission
Update - Update struct for permission changes (partial updates).
- Rbac
Audit Entry - RBAC audit entry — records authorization decisions.
- Rbac
Manager - RBAC Manager — manages roles, permissions, and HitL approvals.
- Rbac
Policy - RBAC policy defining what a role can do.
Enums§
- Action
- Actions that can be authorized by RBAC.
- Approval
Status - Status of a HitL approval request.
- Role
- Roles for role-based access control (3-tier model).
- Subject
- Subject — who is accessing the system.