Permissions

Decide what agents can do before they run

Set per-agent allow-lists for tools and MCP servers, and scope each agent to specific repos and branches. Then cap what it can spend per run, per day, and per month, so an agent never runs up a surprise bill.

Tool callsmerge-referee
Bash
pytest -k auth · passed
Allowed
Edit
tests/test_auth.py
Allowed
github.merge
Not in the agent allow-list
Blocked
Grep
"flaky" · 3 matches
Allowed
Read
tests/test_auth.py
Allowed

Touch

Agents only get the tools you allow

Admins choose which tools and MCP servers each agent can call, down to individual GitHub actions. Anything not on the allow-list, the agent simply cannot reach.

Spend

No surprise bills from an agent

Budgets are set in the config and enforced in real time. A runaway agent is halted at its spend cap, and rolling limits keep any one agent from blowing the monthly number.

Change

A full audit trail, for free

Git already records every agent change with an author and a timestamp, and Ellipsis tracks each config edit on top of that. You always know what an agent looked like at any point in time.

Explore the platform

Observability

One pane of glass for every agent your team runs: which are active, what they shipped, what they cost, and how much they have spent today, across every repo.

Learn more →

Tracing

See the reasoning behind every change, not just the change. Each run records the agent's thinking, the tools it called, the tests it ran, and the diff it shipped. No black boxes.

Learn more →

Security

Govern what agents can touch, keep zero source code retention, and audit every action. Security your team can verify

Learn more →