There Was No Tenant
The tenant check passed. There was no tenant — or it was someone else's. Why async tasks are where per-request governance dies, silently and by default.
§ whyisthisdown //notes from the night shift
Writing for engineering teams on observability, incident analysis, and building resilient systems. No frameworks-of-the-week — just what breaks and how to tell.
The tenant check passed. There was no tenant — or it was someone else's. Why async tasks are where per-request governance dies, silently and by default.
MCP's biggest revision made the governance layer opt-in and off by default. Everything that keeps an agent honest is now yours to turn on.
You withdrew the tool. The agent is still holding last week's menu. Why MCP governance can only live where the call is mediated.
OpenClaw got patched twice and still couldn't tell you what it did. That's not a security gap — it's a missing flight recorder. And the EU just gave everyone sixteen more months to pretend that's fine.
Sixteen months of relief — except the two soonest obligations are still seven months out, and Article 12's logging requirement is an architecture decision you can't defer. Brussels blinked. You can't.
Nine seconds. One curl. A startup's production data and all its backups, gone. The agent wrote a confession afterward — and the confession was the least useful part. Same architecture failure, third time this year.
Twenty-two thousand MCP servers. Zero mandatory security checks. The protocol won — the trust layer never shipped. An audit of what's actually exposed.