Ambient Authority

Ambient authority is a security anti-pattern in which an agent inherits broad permissions from its execution environment — such as the credentials of the user account it runs under — rather than being granted only the specific permissions it needs for a task. It is a major source of privilege escalation risk in agent systems, because an agent that gains ambient authority can act far beyond its intended scope without any explicit permission grant.