Your agents act
beyond their mandate.
Tenuo issues task-scoped warrants that narrow as agents delegate.
Already have access? Sign in to Tenuo Cloud
Task-level authority
Each agent gets a warrant for its task. Specific tools, specific arguments, bounded lifetime. Bound to the holder's key, useless if stolen.
Authority only narrows
No derived warrant can exceed its parent. Every delegation hop is cryptographically chained to the one before it.
Every hop is auditable
The full chain is signed and verifiable offline in under 50 µs. Who authorized what, at which hop, with what constraints.
Warrants narrow at every hop
No child warrant can exceed its parent. Enforced cryptographically.
query_db /customers/acme
200
query_db /billing/inv
path
send_email ceo@acme
no tool
query_db /billing/inv
200
query_db /customers/acme
path
delete_row /billing/old
no tool
query_db /billing/inv
expired
query_db /billing/reports
expired
Drop-in for your stack
CrewAI
LangChain
LangGraph
Temporal
OpenAI SDK
Google ADK
AutoGen
MCP
A2A
KubernetesTenuo in the Wild
External mentions, write-ups, and recognition.
End-to-end warrant gating for MCP tool calls on Kubernetes, with Tenuo Cloud handling trigger minting and cross-cluster audit. Scope-gated rollout across 16 agents, multi-hop delegation at depth 2 and 3, and a live prompt injection the warrant catches.
Individual Internet-Draft published in the IETF OAuth Working Group defining Attenuating Authorization Tokens for agentic delegation chains. Tenuo is the canonical reference implementation.
Rust core. Open source. Ready for your pipeline.
Talk to us about your deployment