# permissions

6 articlestagged with “permissions”

Permission Boundary Bypass

Escalating from limited to elevated permissions in AI agent systems through scope creep, implicit permission inheritance, and capability confusion.

privilege-escalationpermissionsagent-securityboundariesred-teaming

Advanced

API Key Scope and Permission Testing

Test API key scoping and permission boundaries to identify over-privileged access configurations.

labsapi-keyscopepermissionsbeginner

Beginner

Feature Store Access Control

Access control strategies for feature stores: feature-level permissions, cross-team data leakage prevention, PII protection in features, service account management, and implementing least-privilege access for ML feature infrastructure.

access-controlfeature-storepermissionspiidata-leakageleast-privilegerbac

Intermediate

Mapping Model Capabilities

Systematic approaches to discovering and mapping the full capability surface of an AI system, including tools, integrations, permissions, and hidden features.

capability-mappingrecontoolspermissionstradecraft

Advanced

Capability-Based Access Control

Step-by-step walkthrough for implementing fine-grained capability controls for LLM features, covering capability token design, permission scoping, dynamic capability grants, and audit trails.

access-controlcapabilitiespermissionsauthorizationdefensewalkthrough

Intermediate

Sandboxing and Permission Models for Tool-Using Agents

Walkthrough for implementing sandboxing and permission models that constrain tool-using LLM agents, covering least-privilege design, parameter validation, execution sandboxes, approval workflows, and audit logging.

sandboxingtool-usepermissionsagent-securityleast-privilegedefensewalkthrough

Advanced