AI Agents Are Economic Actors. We're Treating Them Like Chatbots.

The Invoice Problem Your agent just approved a $47,000 invoice to a vendor it has never seen before. At 2 AM. On a Saturday. The model that powered the decision passed all safety checks — the output was not toxic, not biased, not hallucinated. The function call was syntactically correct. The tool executed successfully. By every standard metric in the AI safety ecosystem, nothing went wrong. Except that the agent had a $5,000 financial limit. The vendor was not in the approved supplier list. The time-of-day risk profile was elevated. And the person who delegated authority to this agent explicitly excluded wire transfers from its scope. None of these constraints exist in the model. They exist in the organization. And today, almost nobody is enforcing them. The Gap Nobody Talks About The AI safety conversation has been dominated by model-level concerns: alignment, jailbreaks, hallucination, content policy. These are real problems with real teams working on them. OpenAI, Anthropic, Google,