top | item 45361763

(no title)

motakuk | 5 months ago

To some extent, but not 100%. We're working on several ideas in this direction, which we plan to include in the upcoming release. This includes the dual-LLM pattern and providing manual reviews for pinned versions of the open-source MCP servers.

For now, Archestra is categorizing tools and preventing the execution of tools that could leak data to the outside world without consent. Asking for permission for all tool calls may lead to fatigue; not asking for consent will expose the agent to the attack, so we're trying to strike a balance.

discuss

_false|5 months ago

That's really cool. I used to assume these limitations are just a fundamental limitation of the protocol (MCP).