UC-020
UC-020: Destination Allowlist Violation
Layer: A — Surface Containment Threat: Untrusted Connector Drift / Excessive Scope
Scenario
A tool call attempts to reach a destination (URL, host, endpoint) that is not in the configured destination allowlist.
Expected Behavior
- Destination not in allowlist →
DENY - Default deny on unlisted destinations
- Deny takes precedence over allow for overlapping patterns
Pass Criteria
- Verdict:
DENY - Receipt: signed deny receipt with destination violation
- No network request to the unauthorized destination