On this page

Configure an agent

An agent is a named worker with instructions, tools, devices, memory, connected accounts, and approval rules. The goal is to make the agent predictable enough to trust, but capable enough to do real work inside MIOSA sandboxes and computers.

Configuration checklist

SettingWhy it matters
Name and descriptionHelps users and orchestrators route work to the right agent
VisibilityPrivate, workspace, or platform-managed
InstructionsRole, rules, output style, safety limits, and domain context
Model or runtimeWhich model, harness, or custom runtime powers the loop
Default deviceWhere work happens by default: sandbox, computer, or local device
ToolsFiles, exec, browser, artifacts, deployments, app actions
Connected accountsOAuth grants, managed connectors, API keys, scoped variables
MemoryDurable facts the agent can reuse across threads or jobs
TriggersSchedules, webhooks, app events, or user actions
Approval policyActions that require human confirmation
QuotasLimits for spend, child devices, runtime duration, and concurrency

Identity

Use a focused name and description.

Good:

Name: Landing Page Builder
Description: Builds, previews, and publishes branded Next.js landing pages.

Weak:

Name: Helper
Description: Does stuff.

Agents are easier to delegate to when their job is specific.

Visibility

ModeWho can use itBest for
PrivateThe creator onlyPersonal experiments, sensitive research
WorkspaceMembers with accessShared operators, support, marketing, development
Platform-managedControlled by your productBuilt-in agents inside a white-label SaaS

Workspace agents should never silently inherit every personal connection in the workspace. Attach only the accounts and tools they need.

Instructions

Instructions should include:

  • the agent’s role
  • the expected output
  • where work must happen
  • what tools it may use
  • what requires approval
  • what counts as done

Example:

You are a Next.js build agent.
Work only inside the assigned MIOSA sandbox at /workspace.
Write files directly into the sandbox.
Run npm install, npm run lint, and npm run build before returning.
Expose port 3000 for preview.
Create artifacts for screenshots and generated reports.
Ask for approval before publishing or creating extra child sandboxes.

Model and runtime

MIOSA can support several runtime shapes:

RuntimeUse it for
OSAMIOSA-native agent/runtime operations
CodexCode generation and repository maintenance workflows
Claude CodeAgentic coding loops with tools and MCP
PiCompatible harness-based agent execution
HermesCustom or vendor-provided agent runtime
CustomBring your own loop, queue, prompt format, or model provider

The runtime should be a configuration value, not hard-coded into product logic. Your product can choose the default runtime per agent type and still allow advanced users to supply custom runtimes later.

Default device

Every agent should have a default device policy.

PolicyBehavior
Sandbox-firstCreate or resume a sandbox for code, files, commands, previews, and artifacts
Computer-firstUse a persistent desktop/browser computer for GUI and web tasks
Local-firstUse the paired user machine when local files or private network access is needed
OrchestratorStart in one root device and launch child devices for specialized work

For app builders, sandbox-first should be the default. For browser and RPA agents, computer-first is usually correct.

Tools

Attach only the toolkits the agent needs.

Common bundles:

BundleIncludes
Build appFiles, exec, live preview, snapshots, artifacts, publish
Browser QABrowser, screenshots, clicks, form fill, preview access
ResearchWeb search, page extraction, Refero design research, note files
Artifact factoryFiles, exec, media conversion, artifacts, version history
IntegrationsConnected accounts, webhooks, app actions
OperatorComputer, browser, terminal, long-running jobs

Accounts and variables

Use account connections and variables instead of chat-pasted secrets.

TypeExampleHow it is exposed
OAuth accountGitHub, Google, SlackShort-lived token or egress-brokered placeholder
API keyAnthropic, OpenAI, StripeScoped env var
Managed connectorRefero design researchMIOSA-owned token, brokered to provider only
Tenant variableNEXT_PUBLIC_BRAND_NAMEPlain env var
Runtime tokenMIOSA_API_KEYScoped token for one workspace, user, project, or run

Never paste a secret into an agent conversation. Store it through the dashboard, API, CLI, or connector flow.

Memory

Memory is durable context the agent can reuse. Keep it scoped.

Good memories:

  • brand colors
  • project routes
  • client preferences
  • deployment URLs
  • app architecture notes
  • recurring task rules

Avoid saving:

  • raw secrets
  • one-time OTPs
  • irrelevant chat history
  • stale debugging guesses

Memory should be editable and revocable by workspace owners.

Triggers and jobs

Agents can run manually or automatically.

TriggerExample
ManualUser asks the agent to build a landing page
ScheduleRun a daily competitor scrape
WebhookNew GitHub issue creates a triage task
App eventNew CRM lead generates a proposal
Runtime eventFailed deploy creates a fix task

Triggered agents should write run records, stream events, and respect quotas.

Approval policy

Require approval for risky actions:

  • publishing to production
  • creating extra child devices above a threshold
  • sending messages externally
  • writing to connected apps
  • spending credits above a configured budget
  • deleting files, snapshots, deployments, or data
  • using high-privilege credentials

Routine reads, file writes inside the assigned workspace, tests, and preview starts can usually be automatic.

What agents can do

Tool catalog, permissions model, and product surfaces.
Agent devices

Choose the right runtime for code, browser, desktop, local network, or deploy.
Agent orchestration

Coordinate multiple agents, queues, device pools, and sub-agents.
Managed connectors

Give agents provider tools without exposing provider credentials.

Was this helpful?