Michael Cutler

Fractional Futurist

#mas-trm

4 posts

May 30, 2026|5 min read

The 30 Principles for Agentic Engineering — Part 4: Governance and Safety

Principles 21–25. The governance and safety layer: strictKnownMarketplaces, no goal-conflict prompts, quarterly AppSec, four telemetry signals, monthly incident discipline.

[AI & Data][Security]+1

May 18, 2026|6 min read

AI Reviews AI Is Not a Review: The Trust Trap Regulators Won't Accept

AI-reviews-AI looks like a control. Under MAS, the EU AI Act, and any reasonable audit, it isn't. Here's why your compliance team won't accept it — and the compensating controls that actually work.

[AI & Data][Security]+1

May 15, 2026|6 min read

Snyk's ToxicSkills Audit: 13.4% of Public Skills Are Vulnerable

Snyk audited 3,984 public Claude Code skills. 13.4% had critical vulnerabilities. 76 were confirmed malicious. ClawHavoc is the separate, scarier story. Here's the supply-chain hygiene most teams aren't doing.

[AI & Data][Security]

May 13, 2026|14 min read

The Governance Wall: Why Most AI Agents Can't Reach Production

The prototype-to-production gap for AI agents isn't technical — it's governance. Most organisations have nothing in this layer. The companies that build it first win the enterprise market. Everyone else stays in pilot purgatory.

[AI & Data][Security]+1

Preparing your content

Michael Cutler

#mas-trm

Popular Tags

The 30 Principles for Agentic Engineering — Part 4: Governance and Safety

AI Reviews AI Is Not a Review: The Trust Trap Regulators Won't Accept

Snyk's ToxicSkills Audit: 13.4% of Public Skills Are Vulnerable

The Governance Wall: Why Most AI Agents Can't Reach Production

#mas-trm

Popular Tags

The 30 Principles for Agentic Engineering — Part 4: Governance and Safety

AI Reviews AI Is Not a Review: The Trust Trap Regulators Won't Accept

Snyk's ToxicSkills Audit: 13.4% of Public Skills Are Vulnerable

The Governance Wall: Why Most AI Agents Can't Reach Production