docs: clarify agent auth + sandboxed skills

2026-01-15 04:41:38 +00:00
parent edd8c613d6
commit c4402a1ce5
7 changed files with 52 additions and 0 deletions
--- a/docs/tools/elevated.md
+++ b/docs/tools/elevated.md
@@ -20,6 +20,7 @@ read_when:
 - **Host execution**: elevated runs `exec` on the host (bypasses sandbox).
 - **Unsandboxed agents**: when there is no sandbox to bypass, elevated does not change where `exec` runs.
 - **Tool policy still applies**: if `exec` is denied by tool policy, elevated cannot be used.
+- **Not skill-scoped**: elevated cannot be limited to a specific skill; it only changes `exec` location.

 Note:
 - Sandbox on: `/elevated on` runs that `exec` command on the host.