Permissions

Coming soon.

Permissions are allow/deny lists that gate which tool calls an agent can make without confirmation. They live in ~/.agents/permissions/ and stack per config layer, so a project can lock down destructive ops without the team or system layer caring.