AI Agents Should Have a Permission List

Did you know AI agents need rules? Just like a babysitter has a 'can do / can't do' list, AI agents should too. 'You can read email. You can't send any.' Clear rules = safe AI.

Some examples

• Can: read calendar. Can't: change it.
• Can: search the web. Can't: buy stuff.
• Can: write a draft. Can't: post it.
• Can: ask. Can't: do — without OK.

Try it!

Write a 'can / can't' list for an AI helper in your school.

Why permission lists matter so much

Imagine you hired a new babysitter and forgot to leave any rules. They might decide to redecorate your bedroom, eat all the snacks, or invite their friends over — not because they're mean, but because nobody told them not to. AI agents are exactly the same. Without a permission list, an AI agent will do whatever seems helpful to it at the time. That might mean sending an email you weren't ready to send, deleting a file you needed, or making a purchase by accident. Permission lists act like guard rails. They define the 'safe zone' the agent is allowed to work inside. Outside that zone, the agent must stop and ask a human. The smaller and more specific you make the permission list, the safer your agent is. This isn't about mistrusting AI — it's about designing a system where mistakes stay small and fixable.

• Read-only permissions (can look but not change) are the safest starting point
• One-step-at-a-time permissions mean humans approve before anything big happens
• Scope limits (like 'only work in the Downloads folder') keep accidents contained
• Time-based limits (like 'only run between 9am and 5pm') add another safety layer

A safe AI agent never just deletes your stuff or sends an email. It stops and asks: 'Are you sure?'

Some examples

• Before sending an email, the agent asks 'Send it?'
• Before deleting a file, the agent asks 'Really delete?'
• Before spending money, the agent asks for an okay.
• These pauses keep humans in charge.

Try it!

If you ever use an AI agent, watch for the 'are you sure?' moments. Those are safety stops!

Here's why "Why AI Agents Always Ask Permission First" matters: AI agents don't just answer questions — they can do things, like looking things up, writing files, or talking to apps. Good AI agents stop and ask before doing something risky — and knowing how to apply this gives you a concrete advantage.

• Learn what "permissions" means and why it's important
• Learn what "safety" means and why it's important
• Learn what "agents" means and why it's important

1. 1Draw what you think an AI agent looks like — what tools would it carry?
2. 2List five tasks you wish a robot helper could do for you
3. 3Think about one rule you'd give an AI helper

AI agents are powerful, so they're built to ask permission before doing important things — like buying stuff or sending emails.

Some examples

• AI: 'I'm about to send this email — okay?' YOU: 'Yes' or 'No.'
• AI: 'I want to spend $20 on this. Approve?'
• Without permission checks, AI could mess things up fast.
• Always read what AI is about to do before saying yes!

Try it!

Imagine an AI agent says 'I'm about to delete all your photos to save space — okay?' What would you say? (Hint: NO! Read carefully!)