Core terms
Browser agent security: policy control for AI agents that act through a browser. Action mediation: intercepting a proposed browser action before execution. CDP policy enforcement: applying security decisions at the Chrome DevTools Protocol layer.
- Secret substitution: injecting a credential at use time without revealing it to the model
- Prompt injection: untrusted content that attempts to change the agent's instructions
- Human-in-the-loop approval: pausing a sensitive action until a person approves it
- Tamper-evident audit log: an action record designed to show whether entries changed later