- Green — read-only, low risk
- Yellow — write access, medium risk
- Red — admin or delete access, high risk
How to use it
- Open any agent → Security tab
- Hover over any node to see scope details
- Pan and zoom to explore complex permission graphs
Reducing blast radius
A large blast radius means a compromised agent can do a lot of damage. Consider:- Splitting the agent into multiple agents with narrower permissions
- Tightening the policy to remove unused scopes
- Setting a shorter custom token TTL for high-risk scopes