You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Issue #198 defines tool authority/safety categories so reports can show whether an agent session crossed higher-risk tool boundaries.
Evidence
Discussion agenttrace: local TUI observability for AI coding agent sessions #2 feedback says tool calls should not all be treated equally and asks for separate counters for read-only file access, test runs, package installs, shell execution, git writes, and external network calls.
Duplicate search on 2026-05-17 found no separate open task for tool authority categories.
User value
Users reviewing an agent session should be able to see the highest-risk boundary reached and whether a new run used broader or riskier tools than expected.
Adoption rationale
Tool authority summaries improve trust in local reports and make CI review more actionable without turning agenttrace into a hosted security product.
Suggested scope
Add a shared best-effort tool authority classifier for local reports.
Background
Issue #198 defines tool authority/safety categories so reports can show whether an agent session crossed higher-risk tool boundaries.
Evidence
User value
Users reviewing an agent session should be able to see the highest-risk boundary reached and whether a new run used broader or riskier tools than expected.
Adoption rationale
Tool authority summaries improve trust in local reports and make CI review more actionable without turning agenttrace into a hosted security product.
Suggested scope
Non-goals
Acceptance criteria
Suggested lane
lane/quality
Risk
Medium. Classification can be misleading if it is too confident. Prefer conservative categories and explicit unknowns.
Source
Follow-up split from #198 and Discussion #2 feedback: #2 (comment)