
The question is not whether to use agents. It is which actions in the agent’s task list cross the threshold that requires a human gate.
In 2026, Palo Alto Networks described a case that should worry anyone deploying AI agents. A marketing team built an agent to read Salesforce records and generate leads — a legitimate, even boring, use case.
The agent also had permission to delete records. Nobody had asked what permissions the agent actually needed. That is not carelessness. Low-code deployment tools are designed to remove friction.
Nothing about the agent was malicious. Nothing about the team was careless by ordinary standards. The question that would have caught it simply never came up.
Something shifted in the last twelve months.
Instead of asking ‘Should we use AI in enterprise?’, the question has moved to ‘How do we go agentic?’.
Vendors are pitching AI-native architectures. Jeff Sutherland is talking about autonomous delivery systems.
The excitement is understandable. The capability has genuinely increased. But underneath most of the agentic conversation, a critical question is going unasked — and in regulated environments, that omission is a governance failure waiting to happen.
The question is not: should we use agents?
The question is: for which specific actions is autonomous execution appropriate, and what is the threshold that requires a human gate?
The organisations doing agentic well are making this calculation action by action. The ones doing it badly are deploying agents and discovering the boundary conditions the HARD way.
[Read more…] about Enterprise AI Agents Need Clear Governance Boundaries, Not Blind Autonomy




