From a conversation with @ngparker
While readOnlyHint is a very useful indicator for agents, enforcing strict HITL rules based on read vs. write actions can be a bit reductive. It would be great to understand whether an action can be easily reversed without consequences for the end user. Depending on user preferences, agents could decide to skip confirmations for these reversible actions.
For example, drafting an email is not a read only action, but it is also not something that commonly needs to be confirmed with the user. Sending the email, however, is not reversible and should definitely be confirmed.
This could also be called consequentialHint if we wanted to reverse the boolean order, though I prefer "reversible" to be consistent with readOnly.
MCP's destructiveHint comes close but doesn't feel like it quite hits the same note - there are many possible non-deletion actions that users may take that warrant user confirmation.
See also #53
From a conversation with @ngparker
While
readOnlyHintis a very useful indicator for agents, enforcing strict HITL rules based on read vs. write actions can be a bit reductive. It would be great to understand whether an action can be easily reversed without consequences for the end user. Depending on user preferences, agents could decide to skip confirmations for these reversible actions.For example, drafting an email is not a read only action, but it is also not something that commonly needs to be confirmed with the user. Sending the email, however, is not reversible and should definitely be confirmed.
This could also be called
consequentialHintif we wanted to reverse the boolean order, though I prefer "reversible" to be consistent with readOnly.MCP's
destructiveHintcomes close but doesn't feel like it quite hits the same note - there are many possible non-deletion actions that users may take that warrant user confirmation.See also #53