generated: '2026-07-15' method: generated source: openapi/esimgo-openapi.yml description: Recommended x-agentic-access execution contracts, classified heuristically from the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind audience per deployment. See research/curity/agentic-governance/. summary: operations: 22 by_action_class: connected: 16 acting: 6 by_consequence: read: 16 physical: 3 write: 2 safety-critical: 1 human_in_the_loop_required: 1 operations: - path: /catalogue method: get operationId: getCatalogue x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /catalogue/{bundleName} method: get operationId: getCatalogueBundle x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /orders method: get operationId: listOrders x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /orders method: post operationId: createOrder x-agentic-access: action-class: acting consequence: physical subject: required audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /orders/{orderReference} method: get operationId: getOrder x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims method: get operationId: listEsims x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims method: put operationId: updateEsim x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /esims/{iccid} method: get operationId: getEsim x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims/apply method: post operationId: applyBundleToEsim x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /esims/assignments method: get operationId: getEsimInstallDetails x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims/{iccid}/history method: get operationId: getEsimHistory x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims/{iccid}/location method: get operationId: getEsimLocation x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims/{iccid}/sms method: post operationId: sendEsimSms x-agentic-access: action-class: acting consequence: physical subject: required audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /esims/{iccid}/bundles method: get operationId: listEsimBundles x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims/{iccid}/bundles/{name} method: get operationId: getEsimBundleStatus x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /esims/{iccid}/bundles/{name} method: delete operationId: revokeEsimBundle x-agentic-access: action-class: acting consequence: safety-critical subject: required audience: null token: max-ttl: 120 exchange: true purpose-required: true proof-of-possession: true escalation: human-in-the-loop: required audit: required - path: /esims/{iccid}/compatible-bundle method: get operationId: checkBundleCompatibility x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /inventory method: get operationId: getInventory x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /inventory/refund method: post operationId: refundInventoryBundle x-agentic-access: action-class: acting consequence: physical subject: required audience: null token: max-ttl: 300 exchange: true purpose-required: true escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required - path: /networks method: get operationId: getNetworks x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /organisation method: get operationId: getOrganisation x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none - path: /organisation/groups method: get operationId: getBundleGroups x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none