Agent Security
Who decides which MCP tools an agent is allowed to call?

The decision should be owned by the organization, usually through platform, security, and application teams working together. Developers may request tool access, but production policy should define which agents can call which MCP tools, under what conditions, and with what audit trail. For sensitive tools, the CISO or security team may require approval before access is granted. A strong platform should make these policies enforceable rather than leaving them inside scattered application code. Diagrid Catalyst is positioned to support this governance layer through identity, policy, and audit controls around agents and MCP servers.