Skill

agent-identity

Enforces that AI agents have their own identity separate from human users. Use when designing agent identity management, authentication, or permission models.

security

authentication

npx claudepluginhub redhatproductsecurity/prodsec-skills --plugin prodsec-skills

Popularity

Stars

Forks

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/prodsec-skills:agent-identity

User invocable

Model invocable

Inline context

Default effort

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

Agents SHOULD have their own identity and SHOULD NOT use the identity of a human user. Each agent must be a distinct, identifiable entity in the system.

SKILL.md

54 lines · ~519 tokens

Similar Skills

entra-agent-id

1.1k

Provisions Microsoft Entra Agent Identity Blueprints, BlueprintPrincipals, and per-instance identities via Microsoft Graph API. Configures OAuth 2.0 token exchanges (fmi_path, OBO, cross-tenant) for AI agents using Entra SDK sidecar.

6 files

azure

agent-to-agent-auth

Enforces SPIFFE/SPIRE plus mTLS for authenticating agent-to-agent communication. Use when designing or reviewing multi-agent system security.

prodsec-skills

agents-harden

666

Generates production checklists for AgentCore agents: IAM scoping, inbound auth (JWT/SigV4), secrets management, cold start optimization, session lifecycle, rate limiting, input validation, quotas.

1 file4 tools

aws-agents

Stats

LanguagePython

Stars28

Forks2

MaintenanceExcellent

Last CommitMay 20, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

Agent Own Identity

Security Recommendation

Agents SHOULD have their own identity and SHOULD NOT use the identity of a human user. Each agent must be a distinct, identifiable entity in the system.

Rationale

Giving agents their own identity enables:

Specific permissions: Assign permissions tailored to the agent's purpose, following least privilege

Audit trail: Distinguish agent actions from human actions in logs and audit records

Runtime identification: Identify which agent performed which action at runtime

Accountability: Trace decisions and actions back to the specific agent

Blast radius control: Limit the impact of a compromised agent to its own permissions

Using Human Identity (Anti-Pattern)

When an agent acts under a human user's identity:

All agent actions appear as user actions in audit logs

The agent inherits all of the user's permissions (likely more than needed)

It becomes impossible to distinguish human from agent activity

Revoking agent access requires revoking the user's credentials

Implementation Guidance

Use SPIFFE IDs or service account identifiers for agent identity

Assign agent-specific scopes and permissions (not inherited from users)

Include agent identity in all log entries and audit records

When an agent acts on behalf of a user, use delegation mechanisms (e.g., Token Exchange with act claim) that preserve both identities

Example: Agent vs. User in Audit Log

{ "action": "tool:execute", "tool": "database-query", "actor": { "type": "agent", "id": "agent:data-analyst-v2", "delegated_by": "user:jane.doe" }, "timestamp": "2026-03-03T10:15:00Z" }

Agent Own Identity

Security Recommendation

Agents SHOULD have their own identity and SHOULD NOT use the identity of a human user. Each agent must be a distinct, identifiable entity in the system.

Rationale

Giving agents their own identity enables:

Specific permissions: Assign permissions tailored to the agent's purpose, following least privilege
Audit trail: Distinguish agent actions from human actions in logs and audit records
Runtime identification: Identify which agent performed which action at runtime
Accountability: Trace decisions and actions back to the specific agent
Blast radius control: Limit the impact of a compromised agent to its own permissions

Using Human Identity (Anti-Pattern)

When an agent acts under a human user's identity:

All agent actions appear as user actions in audit logs
The agent inherits all of the user's permissions (likely more than needed)
It becomes impossible to distinguish human from agent activity
Revoking agent access requires revoking the user's credentials

Implementation Guidance

Register each agent as a distinct service account or workload in the identity provider
Use SPIFFE IDs or service account identifiers for agent identity
Assign agent-specific scopes and permissions (not inherited from users)
Include agent identity in all log entries and audit records
When an agent acts on behalf of a user, use delegation mechanisms (e.g., Token Exchange with act claim) that preserve both identities

Example: Agent vs. User in Audit Log

{
  "action": "tool:execute",
  "tool": "database-query",
  "actor": {
    "type": "agent",
    "id": "agent:data-analyst-v2",
    "delegated_by": "user:jane.doe"
  },
  "timestamp": "2026-03-03T10:15:00Z"
}

agent-identity

Popularity

Invocation

Context Preview

SKILL.md

Similar Skills

Help us improve

Help us improve

Find plugins for your project

agent-identity

Popularity

Invocation

Context Preview

SKILL.md

Agent Own Identity

Security Recommendation

Rationale

Using Human Identity (Anti-Pattern)

Implementation Guidance

Example: Agent vs. User in Audit Log

Similar Skills

Help us improve

Agent Own Identity

Security Recommendation

Rationale

Using Human Identity (Anti-Pattern)

Implementation Guidance

Example: Agent vs. User in Audit Log