One tenant token
The bearer token scopes MCP and API actions to one isolated tenant. The full token is shown once and stored as a hash server-side.
Coldrig gives an agent useful authority inside one tenant while keeping essential safety rules below the model layer. This is the current trust model—not a certification claim.
A trustworthy agent product cannot rely on a good prompt alone. Identity, isolation, spend, and sending behavior need deterministic enforcement and human visibility.
The bearer token scopes MCP and API actions to one isolated tenant. The full token is shown once and stored as a hash server-side.
The dashboard exchanges a valid tenant token for an HTTP-only browser session, avoiding routine token exposure to page scripts.
Suppression, stop-on-reply, limits, idempotency, and health-based state transitions are service rules, not agent promises.
Dashboard and tool requests resolve through authenticated tenant context. Customers do not share a sender reputation pool.
The owner sees health, campaigns, replies, setup, and billing projections. Paid mutations remain disabled until the backend meter is ready.
Known gaps stay visible: no production sends, no push webhooks, no readable token recovery, and no compliance certification claim.
Email [email protected] with impact, reproduction steps, and a safe proof. Do not access other tenants, run destructive tests, or include live secrets. We do not yet publish a bounty or guaranteed response SLA. The owner must verify inbound alias routing before paid activation; if an early-access message bounces, open a minimal, non-sensitive GitHub issue asking for a private contact path.