What the hub does
The hub detects high-risk or confirmation-required tool calls, freezes the tool name and arguments, records an audit event, and emits an approval intent. Once approved, only the same frozen argument snapshot can be executed.
What the business system does
Your business system decides who should approve, where approval happens, and whether the subject is allowed to request or execute the action. The approver does not need to be a hub administrator.
When to use high risk
Use high risk
Direct refund execution, staff deletion, permission changes, batch outbound messages, cross-tenant writes.
Use business workflow
Create refund request, create deletion request, create draft, submit approval form.