REQ-NFR-014

Agent delegated scope enforced server-side (not client-side trust)

ID
REQ-NFR-014
Category
Non-Functional Requirements
Status
approved
Priority
P0
Created
2026-05-10T18:01:22.559Z
Approved
2026-05-10T18:03:08.336Z
Updated
2026-05-10T18:03:08.336Z

What

Agent delegated scope SHALL be enforced server-side (not client-side trust).

Acceptance

Out-of-scope approval test fails.

Category

Security.

established project management guidelines Mapping

Primary Knowledge Area
Resource Management
Secondary KA
Risk Management
Primary Process Group
Executing
established project management guidelines Deliverable
Resource Management Plan

Server-side scope enforcement is the trust boundary on delegated agent authority.