ChainCaps: Composition-Safe Tool-Using Agents via Monotonic Capability Attenuation 事件

ChainCaps: Composition-Safe Tool-Using Agents via Monotonic Capability Attenuation arXiv:2605.26542v1 Announce Type: cross Abstract: Tool-using agents increasingly operate in open-ended deployment environments, where they compose file systems, web APIs, code interpreters, and enterprise services at runtime. This creates a safety gap in tool composition: an agent can satisfy every per-tool permission check and still produce an unsafe end-to-end effect, such as reading a confidential document, su