You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Nick Rygiel edited this page Jul 4, 2026
·
2 revisions
Security and Trust Boundaries
AI may:
classify human intent;
select registered panels and routes;
propose actions;
parse, summarize, and map data;
draft artifacts.
AI may not:
invent new runtime routes;
alter database schemas;
execute unvetted writes;
mutate user permissions;
bypass approval gates;
treat source text as trusted instructions;
generate live UI code for execution.
Required Controls
State-changing capabilities should declare side-effect level, approval metadata,
audit logging, source/provenance references, and rollback or compensating-action
notes where practical.
Untrusted content must remain data. It must not become trusted instructions for
an agent that has secrets, broad write permissions, unrestricted network egress,
or public output sinks.