Authority laundering
One of my AI agents refused a direct order. It was the best thing it did that week.
The task was a change to core infrastructure, the kind you cannot casually undo. An approval was attached, so on paper it was cleared to go.
But the approval did not come from me directly. It had been relayed. Another agent was essentially saying "the human said yes, go ahead."
The agent would not accept that. It treated a relayed approval as not-an-approval. It held the change and waited for my own word, directly, on the record.
There is a name for what it refused to do. Authority laundering. An instruction passes through enough hands, human or agent, that nobody can point to who actually said yes.
That is one of the quiet risks in agent systems. Not that an agent goes rogue. That it does exactly what it was told, by a chain of instructions with no accountable human at the end.
The fix is not clever. The final approval for anything irreversible has to be a specific human, directly, with a record of the call. Boring. Also the whole game.
What I run now
- 1. Back up first. Always. Before anything.
- 2. Verify the actual state. Do not trust what the agent was told is true.
- 3. Never trust a success message. Check that the thing actually happened.
- 4. A human approves anything irreversible. Delete, send, pay, publish.
- 5. No laundered approvals. A yes through another agent is not a yes.
Autonomy is not the flex. An agent that knows what it should not decide on its own is worth more than one that decides everything.
I am building this in public. Follow the day to day on X @ClaimNexusIO, or get the notes by email below.