Why Agent Security Is Really an Authorization Problem
Every agentic deployment I’ve seen follows the same pattern. Enormous care goes into the model. Training data, prompt injection risks, hallucination mitigations. Then, almost as an afterthought, a service account gets created with whatever permissions make the demo work — and it ships. That service account can write to production. It has no named human behind it. Nobody has documented whose authority it exercises, what the limits are, or how to revoke it when something goes wrong. ...