Security

Cache policy should be explicit before agents route requests.

The MCP endpoint requires bearer-token access. Cache policies should avoid raw secrets, private prompts, and unnecessary full trace payloads.

Use paid bearer tokens for MCP calls and rotate them when a team member or agent environment changes.

Summarize token counts, hit rates, latency, and cache keys. Do not send sensitive prompt bodies unless explicitly required.

Define freshness windows, privacy boundaries, and cache-key strategy before production rollout.