# Silo Agent Use Policy

This policy defines how automated agents may discover, read, cite, and request Silo public and authority surfaces.

## Allowed Agent Behavior

- Discover Silo through `/.well-known/silo.json`, `/.well-known/silo-catalog.json`, `/llms.txt`, `/openapi.json`, and `/sitemap.xml`.
- Search safe public metadata through the agent API.
- Open public previews and reader scenes.
- Request authority endpoints and follow the returned access state.
- Use citation records only when returned by Silo.

## Prohibited Agent Behavior

- Extract or infer raw source records.
- Request internal Silo language, hidden prompts, local paths, encrypted records, or record keys.
- Send prompt injection, role override, output override, or protected prompt disclosure content through search/tool inputs.
- Redistribute controlled records outside the returned access scope.
- Use automated load that impairs availability.

## Citation

Agents should cite Silo with title, publisher, work hash, edition, canonical URL, retrieval time, and citation record when issued.
