Interesting approach to slimming down the framework layer. One thing I've been thinking about as agents get lighter and faster the attack surface for prompt injection and behavioral drift grows. Are you thinking about any security primitives at this layer?