security-permission-gating-agents-can-escalate-beyond-their-intended-scope-pe-f2b655af

THEN Implement an AuthGuardian that issues HMAC/Ed25519-signed scoped permission tokens, granting access only to specific site_1 and resources.

// AuthGuardian gating a write
const guardian = new AuthGuardian({ hmacKey: 'secret' });
const token = guardian.grant('agent-1', ['blackboard:write:status']);
board.write('status', 'value', token);