The Safety Boundary
Traditional model safety asks whether a model produced unsafe text. Agent safety also has to ask whether the agent attempted an unsafe action.What Brane Adds
Brane adds a policy decision before capability execution:- Do not issue refunds above a tenant limit.
- Do not run write SQL in production.
- Do not call high-risk tools without approval metadata.
- Do not access another tenant’s data.
- Do not invoke high-risk MCP tools in production.
- Do not return outputs that contain secrets or PII.
