Policy Structure
An AARM policy has three parts:Match Conditions
Tool and Operation
Match specific tools and operations:Parameters
Match parameter values:Context
Match session context:Risk Signals
Match computed risk scores:Actions
| Action | Behavior |
|---|---|
ALLOW | Execute the action |
DENY | Block with reason |
MODIFY | Rewrite parameters, then execute |
STEP_UP | Require human approval |