Still, this is but one of the ways an AI Agent can careen out of control. I think the lesson is deeper: Agents require code review, auditing, and monitoring. You might prevent a delete with an air gap, but what’s the next thing to look out for?
While that's going on, someone needs to act to protect the data the bank has in the cloud while those lessons are gleaned, learned from and acted upon, which takes longer.
The shocking thing is, I'm the ONLY person in the Cloud Arch & Engineering area of the bank that thought of how do we air gap this and I just found the code to do just that.
Assigning it to one of the Senior Architects & Engineers to update, test, validate and productionalize. Two weeks top to get it done and it'll get deployed afterwards.
That's pretty damn' fast compared to the alternative, is it not?
This is where my Operations background and 42 years of experience comes in handy, which many AppDev's don't have.