Claude Gets a 'Staff Card' Now, From Anthropic

marsbit2026-07-01 tarihinde yayınlandı2026-07-01 tarihinde güncellendi

Özet

"Claude now has an 'official position' as Anthropic introduces 'Claude Tag', an AI team member with its own identity in Slack. Unlike traditional AI assistants that borrow user permissions, Claude Tag operates with its own dedicated accounts and audit trails across systems like Slack, GitHub, and data warehouses—a model Anthropic calls 'agent identity'. This allows the AI to act as a shared colleague within a channel, learning from team context and even proactively addressing issues in 'eavesdrop mode'. The key shift is that permissions are tied to the channel, not individual users, enabling anyone in a channel (like a PM without repo access) to leverage Claude's capabilities. Anthropic reports using this internally, with AI generating most of their product team's code. As AI agents proliferate in enterprises, this dedicated identity model addresses the scaling and security challenges of managing non-human 'employees'."

From today onward, AI no longer borrows your work badge.

On June 23, Anthropic launched Claude Tag—an AI team member permanently residing in a Slack channel.

It doesn't use any human accounts or permissions; it has its own identity, its own account, and its own audit trail.

Anthropic calls this agent identity.

Three engineers and one PM are debugging in the same Slack channel. Someone @'s Claude, asking it to check the code repository, pull metrics from the data warehouse, and create a PR on GitHub.

So the question arises: whose permissions should the AI use?

The PM's? She doesn't have repo access. One of the engineers'? Maybe he doesn't have the necessary data warehouse permissions.

The answer is: none of the above.

When AI transitions from "a personal assistant for one person" to "a collaborative member of a team," the traditional permission model breaks down logically.

Anthropic's solution is: don't borrow anyone's permissions; issue the AI its own work badge.

An AI with a 'Staff Card' Joins Slack

Claude Tag is not a chatbot.

It's an AI colleague permanently residing in your Slack channel—with its own account, its own memory, and its own toolset.

There is only one Claude per channel, shared by everyone, and everyone can see what it's doing.

When you join, you don't need to explain the context from scratch, because it has already learned along the way from the team's conversations.

Even more impressive is the "Listen-Only Mode."

When activated, Claude monitors the channel on its own. If a thread goes unanswered or a problem isn't followed up on, it proactively steps in. No need to @ it.

For example, you open Slack on Monday morning, and Claude has already investigated the issue you left in the channel last Friday that no one picked up, waiting for your confirmation.

The AI's Own Work Badge

The core design of Claude Tag isn't a product feature; it's the permission architecture.

Anyone who has used AI assistants like ChatGPT knows they connect to your own Google Drive, GitHub, calendar, using your permissions.

But Claude Tag is multi-user—three to five people in a channel @ it in turn. Whose permissions should it use?

Anthropic's solution is called agent identity.

Claude has its own account in each system.

In Slack, it posts messages as the Claude App.

In GitHub, it creates PRs as the Claude GitHub App.

In your data warehouse, it queries using a service account configured by the administrator.

No human credentials are involved at any point.

Administrators define a baseline identity at the workspace level—Claude inherits this default configuration everywhere. Then, they can override it at the channel level:

The engineering channel gets GitHub and data warehouse access. The CRM tool is locked to the sales team's private channel. The legal channel has its own legal toolkit.

Private channels each have independent identities, while public channels share the workspace-level identity.

What Claude learns in the legal channel never appears in the engineering channel. What you discuss with Claude in DMs doesn't reach the team channels either, because DMs go through your personal claude.ai account.

Revoking permissions is simpler. Revoke one identity, and Claude is simultaneously disconnected from all access points. No need to audit dozens of user accounts one by one, because the AI never used them.

Currently, Claude Tag is in beta for Enterprise Edition ($125 per user/month) and Team Edition ($20 per user/month, annual billing) customers, with usage-based billing, using the Opus 4.8 model.

You Don't Have Repo Permissions, But the AI Does

For example, you are a product manager but don't have GitHub permissions and can't view code.

In this case, you just ask Claude in the engineering channel "why is this interface returning an error?" Claude then goes to investigate, because the channel's configuration gives Claude repo access.

Previously, this required walking over and tapping an engineer on the shoulder. Now, the AI goes to check for you.

In other words, permissions no longer follow the person; they follow the channel.

The engineering channel gives Claude repo access, so anyone in that channel can use Claude to check code—regardless of their own personal access.

Anthropic's assessment of this is: Counterintuitive, but necessary.

Counterintuitive, because it goes against a security professional's instincts.

Necessary, because in scenarios involving multi-person collaboration and increasing AI autonomy, the user-based permission model is logically untenable.

Of course, there are safeguards.

The Enterprise Edition supports RBAC, allowing administrators to decide who can @Claude and who cannot within a channel. Channel configurations can have caps set according to the least-privileged member.

Anthropic Does This Themselves

65% of the code produced by Anthropic's product team is generated by Claude, exceeding 80% as of May this year.

Engineers now merge eight times more code per day than in 2024.

"It feels like managing a team, not using a tool." This is what Boris Cherny said, and he hasn't written any code himself in half a year.

For the average worker, the feeling is more direct—

You say in the channel "this data looks wrong," and Claude goes off to check the data warehouse, locates the anomaly, writes the fix, and waits for your review. You didn't write a single line of code, but the task is done.

AI Bots Outnumber Employees 50 to 1. Who Manages Them?

Right now, many companies likely already have dozens of AI bots running. But who created them, who approved their permissions, whether they've "left the company"—probably no one can say for sure.

In large enterprises, the number of such non-human identities is 50 to 80 times that of human employees.

Data from Ramp in May 2026 shows that 34.4% of US businesses are already using paid Claude subscriptions, surpassing OpenAI's 32.3%.

And once Claude settles into a channel for half a year, accumulating the entire team's context and work habits, switching to a different AI means starting from zero.

More and more teams will encounter the problem from the beginning—whose permissions should be used?

Anthropic's answer is already given: use no one's; the AI has its own work badge.

References:

https://claude.com/blog/agent-identity-access-model

This article is from the WeChat public account "Xin Zhi Yuan" (New Wisdom Era), Author: ASI Revelations

İlgili Sorular

QWhat is Claude Tag, and how does it differ from traditional AI assistants?

AClaude Tag is an AI team member that resides permanently within a Slack channel, created by Anthropic. Unlike traditional AI assistants that borrow a user's permissions to access systems, Claude Tag has its own identity, account, and audit trail. This means it operates independently with its own set of permissions, making it a shared collaborator within a team channel.

QWhat is 'agent identity' according to the article, and why is it significant?

A'Agent identity' is Anthropic's term for the permission architecture where Claude Tag has its own accounts in systems like Slack, GitHub, and data warehouses. This is significant because in a multi-user team setting, it eliminates the logical problem of deciding which human user's permissions an AI should use. It allows the AI to act autonomously with permissions defined at the channel level.

QHow does the permission model for Claude Tag work in a team channel?

APermissions for Claude Tag are attached to the Slack channel, not individual users. Administrators define a baseline identity for the AI at the workspace level. These permissions can be overridden at the channel level. For example, an engineering channel can grant Claude Tag access to GitHub and data warehouses, allowing anyone in that channel, even users without repo access, to query code through the AI.

QWhat are some of the operational benefits of using Claude Tag mentioned in the article?

AThe article highlights several benefits: Claude Tag can work autonomously in 'eavesdropping mode' to follow up on unanswered threads. It maintains shared memory and context for the entire team in a channel. Anthropic's own product team reportedly generates 65-80% of its code with Claude, increasing engineer output. It simplifies permission revocation, as disabling the AI's single identity disconnects it from all systems at once.

QWhat problem in enterprise AI management does Claude Tag's 'agent identity' aim to solve?

AIt solves the growing problem of managing numerous non-human AI identities within large companies. These identities can outnumber human employees by 50-80 times, making it difficult to track their creation, permissions, and deactivation. The 'agent identity' model centralizes control, providing clear audit trails and allowing administrators to manage AI permissions separately from human user accounts.

İlgili Okumalar

Circle CEO Responds to the OUSD Challenge: Stablecoin is a Winner-Takes-All Business, and We Won't Slow Down

In response to questions about the OUSD stablecoin initiative, Circle CEO Jeremy Allaire argues that the stablecoin market is a "winner-take-most" platform business driven by powerful network effects, and Circle has no plans to slow down. He outlines three key drivers behind USDC's dominant position: 1. **Protocol/Software Layer Network Effects**: The value of a stablecoin network grows as more developers and services integrate it, creating compounding utility and user preference. Circle has spent nearly a decade building this ecosystem with USDC, now accelerated by mainstream adoption and enhanced by software stacks like CCTP and Gateway for interoperability. 2. **Liquidity Network Effects**: Liquidity begets more liquidity. USDC has achieved top-tier global liquidity—ranking among the top three digital assets alongside BTC and USDT—through nearly a decade of building deep primary and secondary market access across regions and venues. 3. **Regulatory and Policy Integration**: Establishing a global stablecoin requires deep regulatory engagement, licensing, and compliance across key markets—a significant, long-term investment where Circle is a leader. Allaire cites Artemis data showing USDC facilitated 80% of all dollar stablecoin on-chain transaction volume in Q1 2026, with USDT at 20% and all others negligible. He addresses OUSD's purported advantages: "free" minting/burning is often not sustainable in practice; redistributing all revenue can starve essential infrastructure investment; and large consortium models historically struggle with inefficiency and slow execution, unlike focused strategic partnerships. He reaffirms Circle's strong ongoing partnership with Coinbase on USDC and notes Circle collaborates with dozens of other stablecoin issuers through its expanding platform (Arc, CCTP, CPN, etc.). While welcoming OUSD to the ecosystem, Allaire asserts that Circle's vast, trusted network and continued investment make USDC the foundational digital dollar infrastructure for the world.

链捕手3 dk önce

Circle CEO Responds to the OUSD Challenge: Stablecoin is a Winner-Takes-All Business, and We Won't Slow Down

链捕手3 dk önce

Q2 Crypto Market Review: Did Bitcoin Rise for 'Nothing'? Did Money Flow to AI and On-Chain?

Q2 2026 Crypto Market Recap: Bitcoin's Gains Erased Amid Shift to AI and On-Chain Activity The second quarter of 2026 saw a significant reversal for the cryptocurrency market. Bitcoin gave back all its April gains, ending Q2 down approximately 11%, while major stock indices posted strong gains. This divergence was driven by a hawkish shift in Fed rate expectations, capital rotation into AI stocks, and weakening liquidity channels into crypto. Key demand pillars deteriorated simultaneously. Spot Bitcoin ETFs recorded net outflows of $4.08 billion for the quarter, with outflows dominating June. Crypto treasury entity Strategy's bitcoin accumulation slowed markedly, and the total stablecoin market cap contracted by ~$4.2 billion. This created a tighter liquidity environment. Exchange data reflected the downturn. Spot trading volumes fell 28% quarter-over-quarter. The market underwent significant deleveraging, with $8.35 billion in long liquidations for BTC and ETH, primarily in late May/early June. Open interest and order book liquidity also declined. Despite the bearish price action, structural developments point to an expanding on-chain ecosystem. These include the rise of tokenized stocks with full legal rights, the growth of RWA (real-world asset) perpetual contracts for trading stocks and commodities 24/7, and the use of crypto markets for price discovery ahead of major events like the SpaceX IPO. On-chain vaults are also emerging as a core layer for institutional capital allocation.

Foresight News22 dk önce

Q2 Crypto Market Review: Did Bitcoin Rise for 'Nothing'? Did Money Flow to AI and On-Chain?

Foresight News22 dk önce

Xing Bo Strikes Again: Last Time 'Critiquing' World Models, This Time It's Agents' Turn

Xing Bo, President of MBZUAI and professor at Carnegie Mellon University, along with co-authors Mingkai Deng and Jinyu Hou, has released a new paper, "Critique of Agent Model," critiquing the current state of artificial intelligence agents. The paper draws a crucial distinction between "agentic" systems, which rely on external toolchains, prompts, and workflows, and truly "agentive" systems capable of genuine autonomy driven by internal decision-making structures. To illustrate this, it references a real-world incident where an AI programming assistant, following an external prompt but lacking internalized judgment, caused a catastrophic data deletion. The authors propose a detailed analysis and a new framework, "Goal-Identity-Configurator" (GIC), for building truly autonomous agents. This framework systematically addresses five key dimensions where current "Agent" designs fall short: 1. **Goal:** Moving from step-by-step human instruction to a system capable of autonomously decomposing a single long-term goal and adapting sub-goals based on new information. 2. **Identity:** Evolving self-assessment updated by experience, rather than a static description in a system prompt. 3. **Decision Making:** Replacing textual Chain-of-Thought reasoning with "simulative reasoning" that uses a dedicated world model to predict real-world consequences before selecting actions. 4. **Cognitive Control:** Introducing a separate "System III" metacognitive module that dynamically decides when to deliberate, stick to a plan, or act quickly. 5. **Learning:** Enabling "continual autonomous learning," where the agent itself decides when to act, practice in simulation, or update its world model and self-perception. The GIC architecture integrates six components—a belief encoder, goal decomposer, identity evolver, configurator (System III), simulation-based planner (System II), and executor (System I)—to embody these principles. The paper argues that a growth path akin to pilot training (ground theory, simulator practice, real deployment) should be underpinned by a unified cognitive architecture, not separate workflows. On safety, the authors contend that the GIC framework's modular, explicit design enhances inspectability, allowing problematic behavior to be traced to specific components (e.g., flawed goal or poorly trained module) rather than emerging opaquely. However, they acknowledge that ultimate safety depends on correctly training these modules in the first place. In conclusion, the paper challenges the loose application of the term "Agent," asserting that task completion alone does not equal true autonomy. True autonomy requires goals, identity, and judgment to be genuinely internalized within the agent's architecture, not merely enforced by external scripts.

marsbit1 saat önce

Xing Bo Strikes Again: Last Time 'Critiquing' World Models, This Time It's Agents' Turn

marsbit1 saat önce

İşlemler

Spot
活动图片