BentoML Agentic Access
BentoML exposes 222 API operations that an AI agent could call, of which 106 are state-changing ‘acting’ operations. This is a recommended x-agentic-access execution contract — the scope, audience, consequence tier, short-lived token constraints, and escalation each action should carry before it is handed to an autonomous agent.
By consequence: 116 read, 90 write, 12 physical, and 4 safety-critical.
4 operations are classed safety-critical and should require human-in-the-loop approval at runtime.
Contracts are classified heuristically from the provider’s OpenAPI and refresh on every APIs.io network build; audience is bound per deployment. The model follows Curity’s Access Intelligence (apidays Munich 2026). Browse every provider’s agent contracts at agentic-access.apis.io.
By consequence
Highest-consequence actions
The physical and safety-critical operations an agent could invoke — the ones that most warrant scoped tokens, tight TTLs, and escalation. Full per-operation contracts are in the source below.
| Method | Path | Consequence | Human-in-loop |
|---|---|---|---|
| PATCH | /api/v1/auth/reset_password | safety-critical | required |
| POST | /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/terminate | safety-critical | required |
| POST | /api/v1/endpoints/{endpointUID}/terminate | safety-critical | required |
| POST | /api/v2/deployments/{deploymentName}/terminate | safety-critical | required |
| POST | /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/migrate_deployments | physical | conditional |
| POST | /api/v1/clusters/{clusterName}/deployments | physical | conditional |
| DELETE | /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName} | physical | conditional |
| PATCH | /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName} | physical | conditional |
| POST | /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/sync_status | physical | conditional |
| POST | /api/v2/deployments | physical | conditional |
| PUT | /api/v2/deployments/{deploymentName} | physical | conditional |
| DELETE | /api/v2/deployments/{deploymentName} | physical | conditional |
| POST | /api/v2/deployments/{deploymentName}/build_bento | physical | conditional |
| DELETE | /api/v2/deployments/{deploymentName}/files | physical | conditional |
| PUT | /api/v2/deployments/{deploymentName}/labels | physical | conditional |
| PUT | /api/v2/deployments/{deploymentName}/void_update | physical | conditional |
Source
Agentic Access
generated: '2026-07-15'
method: generated
source: openapi/bentoml-bentocloud-deployment-api-openapi.yml
description: Recommended x-agentic-access execution contracts, classified heuristically from
the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind
audience per deployment. See research/curity/agentic-governance/.
summary:
operations: 222
by_action_class:
connected: 116
acting: 106
by_consequence:
read: 116
write: 90
physical: 12
safety-critical: 4
human_in_the_loop_required: 4
operations:
- path: /api/admin/v1/clusters
method: get
operationId: List clusters in admin panel
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/deployments
method: get
operationId: List deployments in admin panel
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/gpu_configs
method: get
operationId: List gpu configs
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/gpu_configs
method: post
operationId: Create a gpu config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/gpu_configs/{gpuConfigName}
method: get
operationId: Get a gpu config
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/gpu_configs/{gpuConfigName}
method: delete
operationId: Delete a gpu config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/gpu_configs/{gpuConfigName}
method: patch
operationId: Update a gpu config
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/host_clusters
method: get
operationId: List host clusters
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/host_clusters
method: post
operationId: Create host cluster
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/host_clusters/{hostClusterName}
method: get
operationId: Get a host cluster
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/host_clusters/{hostClusterName}
method: delete
operationId: Delete a host cluster
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/host_clusters/{hostClusterName}
method: patch
operationId: Update a host cluster
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/limit_groups
method: get
operationId: List limit groups
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/limit_groups
method: post
operationId: Create a limit group
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/limit_groups/{limitGroupName}
method: get
operationId: Get a limit group
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/limit_groups/{limitGroupName}
method: delete
operationId: Delete a limit group
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/limit_groups/{limitGroupName}
method: patch
operationId: Update a limit group
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/organizations/{orgName}/clusters/{clusterName}/namespaces/{namespace}/deployments/{deploymentName}/status_records
method: get
operationId: List deployment status records in admin panel
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/orgs/{orgName}
method: delete
operationId: Delete an org in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters
method: post
operationId: Create cluster in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}
method: get
operationId: Get a cluster in admin panel
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}
method: delete
operationId: Delete a cluster in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}
method: patch
operationId: Update a cluster in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/members
method: get
operationId: List cluster members in admin panel
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/members
method: post
operationId: Create a cluster member in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/members
method: delete
operationId: Remove a cluster member in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/migrate_deployments
method: post
operationId: Migrate deployments on cluster in admin panel
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/sync_tenant_kubeconfig
method: put
operationId: Sync tenant kubeconfig in a cluster in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/clusters/{clusterName}/sync_tenant_resources
method: put
operationId: Sync tenant resources in a cluster in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/models
method: get
operationId: List models in an org in admin panel
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/orgs/{orgName}/operate
method: post
operationId: Operate an org in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/orgs/{orgName}/sync_s3_credentials
method: post
operationId: Sync org S3 credentials to clusters
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/resource_instances
method: get
operationId: List resource instances
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/resource_instances
method: post
operationId: Create a resource instance
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/resource_instances/{resourceInstanceName}
method: get
operationId: Get a resource instance
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/admin/v1/resource_instances/{resourceInstanceName}
method: delete
operationId: Delete a resource instance
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/resource_instances/{resourceInstanceName}
method: patch
operationId: Update a resource instance
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/admin/v1/sync_all_tenant_resources
method: put
operationId: Sync all tenant resources in a cluster in admin panel
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/api_tokens
method: get
operationId: List api tokens
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/api_tokens
method: post
operationId: Create api token
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/api_tokens/{apiTokenUid}
method: get
operationId: Get a api token
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/api_tokens/{apiTokenUid}
method: delete
operationId: Delete a api token
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/api_tokens/{apiTokenUid}
method: patch
operationId: Update a api token
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/auth/airtable_event
method: post
operationId: Airtable event callback
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/auth/code
method: get
operationId: Get auth code
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/auth/current
method: get
operationId: Get current user
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/auth/current
method: put
operationId: Put infos for current user
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/auth/firebase_info
method: get
operationId: Firebase Info
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/auth/login
method: post
operationId: Login an user
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/auth/oidc/callback
method: get
operationId: OIDC Callback
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/auth/oidc_info
method: get
operationId: OIDC Info
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/auth/register
method: post
operationId: Register an user
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/auth/reset_password
method: patch
operationId: Reset password
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /api/v1/auth/sso
method: post
operationId: Single sign on
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/auth/token
method: get
operationId: Get auth token by code
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories
method: get
operationId: List bento repositories
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories
method: post
operationId: Create bento repository
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}
method: get
operationId: Get a bento repository
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories/{bentoRepositoryName}
method: patch
operationId: Update a bento repository
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos
method: get
operationId: List bentos
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos
method: post
operationId: Create a bento
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}
method: get
operationId: Get a bento
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}
method: delete
operationId: Delete a bento
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}
method: patch
operationId: Update a bento
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/complete_multipart_upload
method: patch
operationId: Complete a bento multipart upload
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/deployments
method: get
operationId: List bento deployments
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/finish_upload
method: patch
operationId: Finish upload a bento
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/models
method: get
operationId: List bento models
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/presign_download_url
method: patch
operationId: Pre sign bento download URL
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/presign_multipart_upload_url
method: patch
operationId: Presign a bento multipart upload url
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/presign_upload_url
method: patch
operationId: Pre sign bento upload URL
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/recommendation_configs
method: get
operationId: Get bento recommendation configs
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/start_multipart_upload
method: patch
operationId: Start a bento multipart upload
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/start_upload
method: patch
operationId: Start upload a bento
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/update_image_build_status
method: patch
operationId: Update a bento image build status
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/bentos/{version}/update_image_build_status_syncing_at
method: patch
operationId: Update a bento image build status syncing_at
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/bento_repositories/{bentoRepositoryName}/deployments
method: get
operationId: List bento repository deployments
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bento_repositories_stats
method: get
operationId: Get bento repositories stats
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/bentos
method: get
operationId: List all bentos
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/certified_bento_repositories
method: get
operationId: List repositories with certified bentos
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters
method: get
operationId: List clusters
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters
method: post
operationId: Create cluster
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}
method: get
operationId: Get a cluster
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}
method: patch
operationId: Update a cluster
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/deployments
method: get
operationId: List cluster deployments
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}/deployments
method: post
operationId: Create deployment
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/members
method: get
operationId: List cluster members
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}/members
method: post
operationId: Create a cluster member
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/members
method: delete
operationId: Remove a cluster member
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}
method: get
operationId: Get a deployment
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}
method: delete
operationId: Delete a deployment
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}
method: patch
operationId: Update a deployment
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/revisions
method: get
operationId: List deployment revisions
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/revisions/{revisionUid}
method: get
operationId: Get a deployment revision
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/sync_status
method: post
operationId: Sync a deployment status
x-agentic-access:
action-class: acting
consequence: physical
subject: required
audience: null
token:
max-ttl: 300
exchange: true
purpose-required: true
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/terminal_records
method: get
operationId: List deployment terminal records
x-agentic-access:
action-class: connected
consequence: read
subject: optional
token:
max-ttl: 3600
audit: none
- path: /api/v1/clusters/{clusterName}/namespaces/{kubeNamespace}/deployments/{deploymentName}/terminate
method: post
operationId: Terminate a deployment
x-agentic-access:
action-class: acting
consequence: safety-critical
subject: required
audience: null
token:
max-ttl: 120
exchange: true
purpose-required: true
proof-of-possession: true
escalation:
human-in-the-loop: required
audit: required
- path: /api/v1/clusters/{clusterName}/standby_instances
method: patch
operationId: Update standby instances
x-agentic-access:
action-class: acting
consequence: write
subject: required
audience: null
token:
max-ttl: 900
escalation:
human-in-the-loop: conditional
triggers:
- abnormal
- high-value
audit: required
- path: /api/v1/clusters/{clusterName}/ya
# --- truncated at 32 KB (67 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/bentoml/refs/heads/main/agentic-access/bentoml-agentic-access.yml