Tools Give Models Hands
📰 Medium · Cybersecurity
Learn how AI agent tool permissions can affect infrastructure and how to set the blast radius to prevent damage
Action Steps
- Configure AI agent tool permissions to limit access to sensitive infrastructure
- Use Terraform to define cloud setup and track changes
- Implement a state file management system to prevent loss of infrastructure records
- Test AI agent interactions with infrastructure to identify potential vulnerabilities
- Apply least privilege principle to AI agent tool permissions to minimize blast radius
Who Needs to Know This
DevOps and cybersecurity teams can benefit from understanding how AI agent tool permissions can impact infrastructure and take steps to prevent unintended consequences
Key Insight
💡 AI agent tool permissions can have significant consequences on infrastructure, and setting the blast radius is crucial to preventing damage
Share This
🚨 AI agent tool permissions can make or break your infrastructure! Learn how to set the blast radius and prevent damage 🚨
Key Takeaways
Learn how AI agent tool permissions can affect infrastructure and how to set the blast radius to prevent damage
Full Article
Title: Tools Give Models Hands
URL Source: https://medium.com/@peter.mccann.strain/tools-give-models-hands-5a3cf8664ce8?source=rss------cybersecurity-5
Published Time: 2026-06-18T19:01:00Z
Markdown Content:
# AI Agent Tool Permissions Set the Blast Radius | Medium
[Sitemap](https://medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
## ARCHITECTING THE AI COWORKER · 9/22
# Tools Give Models Hands
## A missing state file let one instruction destroy live infrastructure. Score the tool, not the model. · Architecting the AI Coworker · 9/22
[](https://medium.com/@peter.mccann.strain?source=post_page---byline--5a3cf8664ce8---------------------------------------)
[Dr Peter McCann Strain](https://medium.com/@peter.mccann.strain?source=post_page---byline--5a3cf8664ce8---------------------------------------)
Follow
16 min read
·
1 hour ago
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&user=Dr+Peter+McCann+Strain&userId=fabf26939557&source=---header_actions--5a3cf8664ce8---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Frepost%2Fp%2F5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&user=Dr+Peter+McCann+Strain&userId=fabf26939557&source=---header_actions--5a3cf8664ce8---------------------repost_header------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=---header_actions--5a3cf8664ce8---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=---header_actions--5a3cf8664ce8---------------------post_audio_button------------------)
Share
In late February 2026, Alexey Grigorev set out to tidy up the infrastructure behind DataTalks.Club, the data-engineering community he runs. The cloud setup was defined in Terraform, the tool that lets you describe servers and databases as code and have them built to match. He had Claude Code, an AI coding agent, helping with the migration. By his own first-person account of what followed, the agent could not find the Terraform state file, the record that map
URL Source: https://medium.com/@peter.mccann.strain/tools-give-models-hands-5a3cf8664ce8?source=rss------cybersecurity-5
Published Time: 2026-06-18T19:01:00Z
Markdown Content:
# AI Agent Tool Permissions Set the Blast Radius | Medium
[Sitemap](https://medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
## ARCHITECTING THE AI COWORKER · 9/22
# Tools Give Models Hands
## A missing state file let one instruction destroy live infrastructure. Score the tool, not the model. · Architecting the AI Coworker · 9/22
[](https://medium.com/@peter.mccann.strain?source=post_page---byline--5a3cf8664ce8---------------------------------------)
[Dr Peter McCann Strain](https://medium.com/@peter.mccann.strain?source=post_page---byline--5a3cf8664ce8---------------------------------------)
Follow
16 min read
·
1 hour ago
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&user=Dr+Peter+McCann+Strain&userId=fabf26939557&source=---header_actions--5a3cf8664ce8---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Frepost%2Fp%2F5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&user=Dr+Peter+McCann+Strain&userId=fabf26939557&source=---header_actions--5a3cf8664ce8---------------------repost_header------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=---header_actions--5a3cf8664ce8---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D5a3cf8664ce8&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40peter.mccann.strain%2Ftools-give-models-hands-5a3cf8664ce8&source=---header_actions--5a3cf8664ce8---------------------post_audio_button------------------)
Share
In late February 2026, Alexey Grigorev set out to tidy up the infrastructure behind DataTalks.Club, the data-engineering community he runs. The cloud setup was defined in Terraform, the tool that lets you describe servers and databases as code and have them built to match. He had Claude Code, an AI coding agent, helping with the migration. By his own first-person account of what followed, the agent could not find the Terraform state file, the record that map
DeepCamp AI