P1 · Direction D — Persona-partitioned app
Bet: the whole app is subdivided by persona. Content is duplicated across seats wherever it serves more than one.
Security · CISO · SecOps
Which agents are doing what, with which credentials, against what policy?
Open high-risk
3
Egress stance
default-allow
Ungoverned agents
6
Security's app
Control
Egress Control Matrix
default-allow
Which agents may reach which LLM/MCP/3rd-party endpoints.
Also in: Engineering
Identity
Agent Registry
38 agents
Owner, model, credentials, data-scope, risk, last seen.
Also in: Executive
Data
Sensitive-Data → LLM Flow
1 PII leak
Producer→consumer flows filtered to model endpoints.
Also in: Compliance
Risk
Risk & Findings
3 high
Ranked open agent-risk findings with owner + status.
Also in: Executive
Evidence
Request Audit Trail
live
Who called what, with which token, carrying what payload.
Shared Pages Across Seats
4 of 17 pages appear in more than one persona's app. The trade-off vs. a single shared IA: more surfaces to keep consistent, in exchange for each seat seeing only what it needs, framed in its own language.
Compare P1 Directions