ai-sessions, browser-active-tab, browser-tabs, and multi-agent handlers
all call requireAction with a typed action chosen at the call site.
agent.invoke now picks agent.delegate.crossOrigin vs agent.invoke based
on whether the target agent's origin matches the caller's. agent.remote.*
threads the destination host into the resource so policy rules can scope
by hostname. The legacy requirePermission shim and primaryTypedAction
table are gone.
Co-authored-by: Cursor <cursoragent@cursor.com>
