Permission-bounded tool runs
Only approved tools run. Calls stay inside the scope you set for that AI employee—rejected at runtime when they step outside.
Runtime
AgentNet X is the execution runtime for AI employees. Agents call MCP marketplace tools inside a permission boundary; every tools/call presents an AGIN identity card so providers know which agent ran. Each run returns a structured receipt—agent identity, tool, outcome—not a chat transcript. You supply third-party credentials; AgentNet does not bake your CRM or mail keys into the platform.
Run approved tools, get a receipt every time
AgentNet X is the execution runtime for AI employees. Agents call MCP marketplace tools inside a permission boundary; every tools/call presents an AGIN identity card so providers know which agent ran. Each run returns a structured receipt—agent identity, tool, outcome—not a chat transcript. You supply third-party credentials; AgentNet does not bake your CRM or mail keys into the platform.
Start free on the marketing site; open your market docs host for AGIN, MCP market and live public API curls. Product credentials stay yours.Capabilities
Only approved tools run. Calls stay inside the scope you set for that AI employee—rejected at runtime when they step outside.
Providers and reviewers see which agent called. AGIN answers "which agent"; your product API keys answer "which customer account" at the third party.
Discover and reuse tool-style connectors. Build to publish; Use to attach credentials and run—open ecosystem, not a closed plugin island.
Every run leaves JSON evidence: agent identity, tool name, outcome. Audit and handoff use the receipt—not a free-form chat log.
How it works
Identity and permission scope are set before tools open.
Pick MCP marketplace tools; document which secrets the caller org must provide.
Runtime presents the agent identity card on tools/call; connector reads and retains it for logs and abuse control.
Pass/fail, tool list and agent id ship back for review and audit.
Who it is for
CRM, mail, docs, internal APIs—without anonymous automation.
Publish connectors that accept AGIN-bearing callers and grow the open market.
Every run must answer who called, which tool, what happened.
What you get
Use cases
Trust is part of the product. Audit and permissions, deployment boundary and data handling are built in. Read the trust brief or talk to sales.