generated: '2026-07-15' method: generated source: openapi/google-cloud-service-mesh-openapi.yml description: Recommended x-agentic-access execution contracts, classified heuristically from the OpenAPI. A governance starting point for exposing this API to AI agents — review and bind audience per deployment. See research/curity/agentic-governance/. summary: operations: 22 by_action_class: connected: 11 acting: 11 by_consequence: read: 11 write: 11 human_in_the_loop_required: 0 operations: - path: /v1/{name} method: get operationId: getResource x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{name} method: delete operationId: deleteResource x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{name} method: patch operationId: updateResource x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/locations method: get operationId: listLocations x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/endpointPolicies method: get operationId: listEndpointPolicies x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/endpointPolicies method: post operationId: createEndpointPolicy x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/gateways method: get operationId: listGateways x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/gateways method: post operationId: createGateway x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/meshes method: get operationId: listMeshes x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/meshes method: post operationId: createMesh x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/httpRoutes method: get operationId: listHttpRoutes x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/httpRoutes method: post operationId: createHttpRoute x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/grpcRoutes method: get operationId: listGrpcRoutes x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/grpcRoutes method: post operationId: createGrpcRoute x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/tcpRoutes method: get operationId: listTcpRoutes x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/tcpRoutes method: post operationId: createTcpRoute x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/tlsRoutes method: get operationId: listTlsRoutes x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/tlsRoutes method: post operationId: createTlsRoute x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/serviceLbPolicies method: get operationId: listServiceLbPolicies x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/serviceLbPolicies method: post operationId: createServiceLbPolicy x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{parent}/operations method: get operationId: listOperations x-agentic-access: action-class: connected consequence: read subject: optional token: max-ttl: 3600 audit: none scope: - https://www.googleapis.com/auth/cloud-platform - path: /v1/{name}:cancel method: post operationId: cancelOperation x-agentic-access: action-class: acting consequence: write subject: required audience: null token: max-ttl: 900 escalation: human-in-the-loop: conditional triggers: - abnormal - high-value audit: required scope: - https://www.googleapis.com/auth/cloud-platform