Summary

DeepSeek TUI merged structured permission rules for tool invocation through permissions.toml, adding deny, allow, and ask actions scoped to tool and command behavior. The change moves the project toward explicit agent governance rather than mode-level trust alone.

What changed

DeepSeek TUI added ACL-style permissions.toml rules for tool invocation decisions.

Why it matters

As agents gain more autonomy, users need policy controls that are explicit, inspectable, and reusable across sessions. Structured permission rules can reduce reliance on ad hoc prompts and make agent execution safer for real projects.

Evidence excerpt

Agents Radar reported PR #3650 as adding permissions.toml with deny/allow/ask action rules for tool invocation.

Sources