← Back to all sparks
S

Speakeasy

DEVOPS
Velocity8.8

Gram is maturing from MCP tooling into a governed platform for running agents at work.

agent-platformmcpgovernancerbacwebhooksobservability
Current state
Speakeasy's Gram platform is shipping near-daily, version-tagged releases focused on agent governance and operations. The recent window adds RBAC scopes for agent-session transcripts, durable block pages for risk-engine denials, an agent-type session filter, audit-log subject linking, user-session/identity management, and event-driven agent triggers. The work reads as building the control and observability plane around agents teams are already running.
Where it's heading
Gram is moving up the stack from MCP server tooling toward a full agent-operations platform: identity and session management, fine-grained access scopes, a risk engine that explains its denials, and now triggers that let Slack, Linear, and GitHub events drive agents. The throughline is governance plus reactivity — making agents both auditable and able to act on real-world events inside an org's existing tools.
Prediction
Expect deeper governance (more granular scopes, policy audiences, audit tooling) alongside more trigger sources and orchestration, as Gram positions itself as the operations layer for enterprise agent deployments.

Recent moves

  1. 4d ago

    Gate access to other members' agent sessions with a new chat:read scope

    A new chat:read RBAC scope gates who can read other members' agent-session transcripts, withheld even from admin by default. Tightens least-privilege controls as agent sessions become sensitive records.

  2. 4d ago

    Project Assistant: rename chats, see who owns each assistant, and a tidier context block

    Project Assistant adds inline chat renaming, assistant ownership visibility, and a collapsible context block. Quality-of-life polish for the assistant surface, not a capability shift.

  3. 5d ago

    Blocked tool calls get their own page the agent can reason about, plus filter sessions by agent type

    Risk-engine-blocked tool calls become durable, linkable pages with thumbs feedback, and the block reason is handed back to the agent so it explains denials instead of inventing them. Plus an agent-type session filter. Strengthens the auditability and honesty of the governance layer.

  4. 7d ago

    Pin the chats you keep coming back to and publish plugins without leaving their detail page

    Users can pin frequently used chats and republish plugins in one click from the plugin detail page, with a badge flagging drift between live and edited versions. Minor but practical workflow conveniences.

  5. 7d ago

    Jump straight from the audit log to any subject and register remote session clients without leaving the issuer page

    Audit-log entries now link to their subject's detail page, and admins can register remote session clients from the issuer page. Navigational and setup improvements that make the identity/audit surface more usable.

  6. 9d ago

    Steadier assistants, hardened hooks, and resilient functions

    Reliability work: assistants reconcile MCP changes mid-conversation, hooks fail safely and retry, Functions absorb load spikes, and token/cost accounting is corrected - the hardening enterprise adoption demands.