Least Privilege (Tool Access)

Patterns

Definition

A security principle applied to agent tool design: give each agent and subagent only the minimum tools required to complete its specific task. Reduces blast radius if an agent is compromised or makes an error. Implemented via AgentDefinition tool lists and skill allowed-tools.

Example Usage

A code review subagent gets read_file and list_directory tools only — not write_file, execute_command, or network tools.

Related Concepts

Tool Distribution & Least Privilege

Tool Design & MCP

Each agent should have only the tools needed for its specific role (4-5 tools, not 18)

Related Terms

allowed-tools MCP Roots Subagent

← Back to Glossary