Skip to main content

How MandateZ Fixes ASI-01: Excessive Agency

What Is the Risk?

Excessive Agency occurs when an AI agent is given more permissions than it needs to complete its task. The agent can access tools, data, or APIs beyond its intended scope — and a single prompt injection or logic bug can escalate into unauthorized actions across your entire infrastructure. In short: if your agent can delete the production database, eventually it will.

How MandateZ Mitigates It

MandateZ enforces the principle of least privilege at the infrastructure level, not the prompt level.

Policy Engine — Allowlist by Default

The MandateZ policy engine lets you define exactly which action_type + resource combinations an agent is permitted to use. Everything else is blocked before execution.

Human Oversight Gate

Even when an action is allowed by policy, MandateZ can require human approval for sensitive operations. If no human responds within the timeout, the action is auto-blocked.

Tamper-Proof Audit Trail

Every action — allowed or blocked — is signed with the agent’s Ed25519 key and logged to the event stream. If an agent exceeds its intended scope, you have a cryptographic record of exactly what happened.

Get Started

Set up MandateZ in under 5 minutes and enforce least-privilege on your agents.