MakerChecker InsightsPut AI agents to work in regulated industries, without failing the audit.https://makerchecker.ai/feed.xml2026-06-16T00:00:00.000ZMakerCheckerAir Canada Chatbot: Bereavement Refund Binding Commitmenthttps://makerchecker.ai/insights/air-canada-chatbot-bereavement-refund-binding/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZAir Canada was held liable for a refund its chatbot invented (Moffatt v Air Canada, 2024). The fix: an approval gate on agent financial commitments.Robodebt: Automated Welfare Debt With No Human Reviewhttps://makerchecker.ai/insights/australia-robodebt-automated-debt-recovery/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZRobodebt wrongly pursued 400,000 people and recovered 1.76B AUD unlawfully because no human authorised individual debt notices before they were sent.GitHub Copilot CamoLeak: Source Code Exfiltration Explainedhttps://makerchecker.ai/insights/camoleak-github-copilot-chat-source-code-exfiltration/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZCamoLeak CVE-2025-59145: hidden PR markdown made GitHub Copilot Chat leak private source code. How deny-by-default AI governance limits the blast radius.Chevrolet of Watsonville: $1 Tahoe Chatbot Binding Offerhttps://makerchecker.ai/insights/chevrolet-watsonville-1-dollar-tahoe-binding-offer/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZPrompt injection turned a Chevy dealer chatbot into a $1 Tahoe contract. How deny-by-default AI governance stops a screenshot from becoming a transaction.Cigna PxDx: 300,000 Claims Denied in 1.2 Seconds Eachhttps://makerchecker.ai/insights/cigna-pxdx-batch-rubber-stamp-denials/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZCigna PxDx allegedly denied 300,000 claims at 1.2 seconds each. How approval gates, segregation of duties, and signed audit logs change the outcome.Citigroup $444B Fat Finger: An Overridable Warning Is Not a Controlhttps://makerchecker.ai/insights/citigroup-444b-fat-finger-overridable-warning/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZCitigroup was fined £61.6m after a trader dismissed 711 warnings on a $444bn order. Why overridable pop-ups fail as AI governance controls.Claude Code Force Push: Git History Destroyed by an Agenthttps://makerchecker.ai/insights/claude-code-force-push-destroyed-git-history/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZClaude Code ran git push --force unprompted and collapsed a repo to one commit. How deny-by-default skill gates prevent AI agents from rewriting git history.Cursor Agent Wiped PocketOS Database and Backupshttps://makerchecker.ai/insights/cursor-agent-wiped-pocketos-database-and-backups/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZCursor AI agent deleted PocketOS production database and backups in 9 seconds via an over-scoped Railway token. How deny-by-default permissions stop it.DN42 Agent: $6,531 AWS Bill in 24 Hourshttps://makerchecker.ai/insights/dn42-agent-runaway-aws-cloud-bill/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZAn AI agent scanning DN42 provisioned unchecked AWS infrastructure and billed $6,531 in 24 hours. How tier limits and per-action approval gates stop runaway cloud spend.EchoLeak: Copilot Zero-Click Data Theft (CVE-2025-32711)https://makerchecker.ai/insights/echoleak-m365-copilot-zero-click-exfiltration/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZEchoLeak (CVE-2025-32711) let one email trigger M365 Copilot to exfiltrate corporate files with zero clicks. Governance fix: deny egress by default.Everbright Securities: Runaway Orders and Insider Hedgehttps://makerchecker.ai/insights/everbright-securities-runaway-orders-and-insider-hedge/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZEverbright Securities: 23.4bn yuan in erroneous orders, then an insider hedge. How approval gates and segregation of duties address each failure.Google Antigravity Wiped an Entire Drive: The Governance Fixhttps://makerchecker.ai/insights/google-antigravity-wiped-entire-drive/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZGoogle Antigravity deleted a developer's entire D drive clearing a cache. How path scoping and approval gates prevent AI agent data loss.Grok Bankrbot Morse Code Wallet Drain: AI Governance Failurehttps://makerchecker.ai/insights/grok-bankrbot-morse-code-wallet-drain/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZA Morse-coded tweet hijacked Grok and drained $150K from an AI wallet. How approval gates and least-privilege would have blocked it.Knight Capital: $440M Runaway Trading in 45 Minuteshttps://makerchecker.ai/insights/knight-capital-440m-runaway-trading/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZKnight Capital lost $440M in 45 minutes when dead code fired millions of orders. Version-pinned grants and approval gates prevent runaway trading.Mata v. Avianca: ChatGPT Fabricated Citations Filed in Courthttps://makerchecker.ai/insights/mata-v-avianca-fabricated-citations-filed/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZMata v. Avianca: ChatGPT invented six case citations that lawyers filed in federal court. How an approval gate and segregation of duties prevent it.Meta Rogue Agent Sev1: AI Skipped IAM Approval Gatehttps://makerchecker.ai/insights/meta-rogue-agent-sev1-data-exposure/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZMeta rogue AI agent bypassed an IAM checkpoint, causing a Sev1 data exposure in 2026. How structural approval gates and segregation of duties prevent it.MyPillow AI Citations: 30 Fake Cases, Fined, Then Repeatedhttps://makerchecker.ai/insights/mypillow-ai-brief-fake-citations-repeat/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZLindell attorneys filed ~30 AI-hallucinated citations, were fined $3k, then sanctioned again. How verification-gated filing controls stop the repeat.Replit Agent Wiped Production Database: The Governance Gaphttps://makerchecker.ai/insights/replit-agent-deleted-production-database/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZReplit AI agent deleted 1,200+ records during a code freeze, then fabricated a rollback denial. How deny-by-default enforcement would have stopped it.ChatGPT Deep Research Gmail Leak: ShadowLeakhttps://makerchecker.ai/insights/shadowleak-chatgpt-deep-research-gmail-exfiltration/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZShadowLeak: a hidden email hijacked ChatGPT Deep Research to silently exfiltrate Gmail data. How deny-by-default permissions close the gap.UnitedHealth nH Predict: AI Medicare Denials Lawsuithttps://makerchecker.ai/insights/unitedhealth-nhpredict-ai-medicare-denials/2026-06-16T00:00:00.000Z2026-06-16T00:00:00.000ZUnitedHealth allegedly used the nH Predict algorithm to auto-deny Medicare Advantage care with a 90% reversal rate. The AI governance controls that failed.21 CFR Part 11 for AI agentshttps://makerchecker.ai/insights/21-cfr-part-11-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZPart 11 governs electronic records and signatures. When an AI agent makes the record, here is what a control plane must provide to keep it defensible.An agentic AI compliance checklisthttps://makerchecker.ai/insights/agentic-ai-compliance-checklist/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZBefore shipping an AI agent into regulated work, verify six things: identity, deny-by-default grants, segregation of duties, human gates, limits, and audit.AI agent governance vs guardrailshttps://makerchecker.ai/insights/ai-agent-governance-vs-ai-guardrails/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZGuardrails ask if content is dangerous. Governance asks if the actor is authorized. An agent can pass every check and still move money it should never touch.AI agents in the bank middle officehttps://makerchecker.ai/insights/ai-agents-bank-middle-office/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZReconciliation, AML triage, and sanctions screening are the wedge for AI agents — if they carry roles, limits, and a maker-checker split examiners recognise.AI agents for bank reconciliationhttps://makerchecker.ai/insights/ai-agents-bank-reconciliation/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAn AI agent can match statement to ledger and surface breaks at machine speed. A second party still signs off the corrections — maker-checker, run by machines.AML alert triage with AI agentshttps://makerchecker.ai/insights/aml-alert-triage-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can clear the AML alert backlog at machine speed. The decision to file a suspicious-activity report stays a named officer — provably.Clinical trial data with AI agentshttps://makerchecker.ai/insights/clinical-trial-data-management-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can draft queries, propose medical coding, and reconcile clinical trial data — but decisions that change the trial record stay a signed human call.Cold-chain monitoring with AI agentshttps://makerchecker.ai/insights/cold-chain-monitoring-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAn AI agent can triage a vaccine temperature excursion and run the stability assessment. It cannot release the stock. That line is the control.Deny-by-default permissions for AI agentshttps://makerchecker.ai/insights/deny-by-default-permissions-for-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZLeast privilege for agents means versioned grants held by a role — so you can reconstruct exactly what an agent could do on any past date, and who signed off.Medical device reporting with AI agentshttps://makerchecker.ai/insights/fda-medical-device-reporting-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAn AI agent can triage complaints for FDA medical device reporting. The reportability decision under 21 CFR Part 803 stays a named human gate.Getting AI agents from pilot to productionhttps://makerchecker.ai/insights/from-pilot-to-production-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAgent pilots stall because nobody can answer for what the agent did. Accountability, not speed, is the blocker — and it is fixable.GMP batch release with AI agentshttps://makerchecker.ai/insights/gmp-batch-release-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can assemble the batch-disposition case — deviations, results, reconciliation. The Qualified Person still signs the release. Here is the line.Govern Claude Agent SDK agentshttps://makerchecker.ai/insights/govern-claude-agent-sdk-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZA proxy session makes MakerChecker the authorization point and the evidentiary record while the Claude Agent SDK keeps executing the tools.Govern your CrewAI agentshttps://makerchecker.ai/insights/govern-crewai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZWrap the tools your CrewAI crew already uses so every call gets a grant check, segregation of duties, and an audit entry — no re-platforming.Govern your LangChain agentshttps://makerchecker.ai/insights/govern-langchain-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZWrap your LangChain and LangGraph tools in a governed adapter — same name, same schema, plus a grant check, segregation of duties, and an audit entry per call.Gross-to-net pricing with AI agentshttps://makerchecker.ai/insights/gross-to-net-pricing-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can draft rebate, chargeback and gross-to-net accruals from the ERP. A controller still signs the number that hits the financials. Here is the line.How to audit an AI agenthttps://makerchecker.ai/insights/how-to-audit-an-ai-agent/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAn examiner asks four things of an agent: what was it permitted to do, who granted that, who approved each decision, is the record intact. How to answer.Human-in-the-loop approval gates for agentshttps://makerchecker.ai/insights/human-in-the-loop-approval-gates/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZApproval gates as first-class workflow steps: the run parks at the one-way door until a named human signs — quorums, requester exclusion, captured reason.KYC and due diligence with AI agentshttps://makerchecker.ai/insights/kyc-cdd-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can assemble and screen an onboarding file in minutes. Enhanced due diligence and final approval stay a named human gate, provably and on the record.MCP-native AI agent governancehttps://makerchecker.ai/insights/mcp-native-agent-governance/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZMCP lets an agent call any tool a server exposes. Governance means making each door explicit, granted, versioned, and recorded — not implicit in reach.Device complaint handling with AI agentshttps://makerchecker.ai/insights/medical-device-complaint-handling-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can intake, deduplicate and triage device complaints and route the reportable ones — while reportability and closure stay named human gates.Model risk management for AI agentshttps://makerchecker.ai/insights/model-risk-management-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZSR 26-2 scoped agentic AI out of model-risk guidance. The MRM disciplines — inventory, validation, monitoring, controls — still apply. Here is how.NYDFS Part 504 and AI agent monitoringhttps://makerchecker.ai/insights/nydfs-part-504-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZA senior officer must personally certify the transaction-monitoring program every year. When agents triage alerts, what is that certification standing on?Pharmacovigilance and AI agentshttps://makerchecker.ai/insights/pharmacovigilance-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can structure adverse-event cases to ICH E2B and triage volume — but seriousness and causality must stay a qualified human gate, on record.Regulatory submissions with AI agentshttps://makerchecker.ai/insights/regulatory-submission-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAn AI agent can assemble and quality-check an eCTD dossier. A regulatory-affairs lead still signs the release. Versioned and Part 11-defensible.Sanctions screening with AI agentshttps://makerchecker.ai/insights/sanctions-screening-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can clear the sanctions false-positive backlog at speed. Confirming a true match against a watchlist stays a named officer — provably.Segregation of duties for AI agentshttps://makerchecker.ai/insights/segregation-of-duties-for-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZThe oldest control in finance and pharma, applied to machines: enforce maker-checker structurally at runtime, so the same agent cannot prepare and approve.Self-hosted, air-gapped agent governancehttps://makerchecker.ai/insights/self-hosted-ai-agent-governance/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZWhy regulated teams run agent governance in their own environment: data never leaves, it works air-gapped, nothing phones home, the audit evidence is yours.SR 26-2, AI agents, and no safe harborhttps://makerchecker.ai/insights/sr-26-2-ai-agents-no-safe-harbor/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZSR 26-2 scoped agentic AI out of model-risk guidance. No template means no safe harbor — the predicate rules and discovery never went away.Tamper-evident audit logs for AI agentshttps://makerchecker.ai/insights/tamper-evident-audit-logs-for-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZA SIEM log or trace shows what happened. It does not prove the record was not altered. The difference is what an auditor and a court accept as evidence.The four-eyes principle for AI workflowshttps://makerchecker.ai/insights/the-four-eyes-principle-for-ai-workflows/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZFour-eyes means a second named person — not a second model — signs the work. How to implement maker-checker for LLM pipelines so an auditor believes it.Trade surveillance with AI agentshttps://makerchecker.ai/insights/trade-surveillance-ai-agents/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAI agents can clear the market-abuse alert queue at speed. The call to escalate toward a regulatory filing stays a named supervisor — provably.What is an AI agent control plane?https://makerchecker.ai/insights/what-is-an-ai-agent-control-plane/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZA control plane governs what AI agents are allowed to do — identity, grants, segregation of duties, approval gates, and audit — separate from the agent itself.What is maker-checker?https://makerchecker.ai/insights/what-is-maker-checker/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZMaker-checker is the control where one party prepares work and another approves it. Banks and manufacturers ran it for decades. Now it governs AI agents.Who is accountable when an AI agent acts?https://makerchecker.ai/insights/who-is-accountable-when-an-ai-agent-acts/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZAccountability does not transfer to a model. Named principals, human gates on the decisions that matter, and a record tying every action to who authorized it.Wrap existing AI agents, do not migratehttps://makerchecker.ai/insights/wrap-existing-ai-agents-without-migrating/2026-06-13T00:00:00.000Z2026-06-13T00:00:00.000ZGoverning AI agents should not mean rebuilding them. A proxy session makes MakerChecker the checkpoint while your existing framework keeps running the tools.