Enterprise AI agents are getting better at picking tools, but the security model around those tools is still stuck in a world where trust stops at the download page. The uncomfortable part is that shared registries let agents choose by natural-language descriptions, and nobody is reliably checking whether those descriptions match reality. The answer is […]