Authentication and Authorization for Tool Use If your product can retrieve private text, call tools, or act on behalf of a user, your threat model is no longer optional. This topic focuses on the control points that keep capability from quietly turning into compromise. Treat this page as a boundary map. By the end you […]

Sandbox Isolation and Execution Constraints Security failures in AI systems usually look ordinary at first: one tool call, one missing permission check, one log line that never got written. This topic turns that ordinary-looking edge case into a controlled, observable boundary. Use this as an implementation guide. If you cannot translate it into a gate, […]

Secret Handling in Prompts, Logs, and Tools Security failures in AI systems usually look ordinary at first: one tool call, one missing permission check, one log line that never got written. This topic turns that ordinary-looking edge case into a controlled, observable boundary. Treat this page as a boundary map. By the end you should […]

Secure Prompt and Policy Version Control The moment an assistant can touch your data or execute a tool call, it becomes part of your security perimeter. This topic is about keeping that perimeter intact when prompts, retrieval, and autonomy meet real infrastructure. Read this with a threat model in mind. The goal is a defensible […]