From fb9f6fb8b775ca1f4c21fdde3511fc5d77da1f60 Mon Sep 17 00:00:00 2001
From: Charles Goldberg <cgoldber82@gmail.com>
Date: Mon, 23 Mar 2026 09:00:46 -0600
Subject: [PATCH] =?UTF-8?q?fix:=20tighten=20'Why=20this=20exists'=20?=
 =?UTF-8?q?=E2=80=94=20risk=20framing,=20not=20feature=20list?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

diff --git a/README.md b/README.md
index 6a267db..4fee502 100644
--- a/README.md
+++ b/README.md
@@ -66,13 +66,9 @@ jobs:
 
 AI agents can deploy code, delete data, and modify infrastructure.
 
-Today, they do this with:
+Today, they often do this with no approval, no accountability, and no audit trail. That's a production risk.
 
-- ❌ No explicit approval
-- ❌ No accountability
-- ❌ No audit trail
-
-"Approved" is a mutable DB flag. An agent, a backend, or a bug can flip it.
+"Approved" is a mutable DB flag. An agent, a backend, or a bug can flip it. There's no proof a human authorized *this specific action* with *these exact arguments*.
 
 Deploy Gate enforces:
 
@@ -80,7 +76,6 @@ Deploy Gate enforces:
 - ✅ Signature bound to exact args (commit, repo, environment)
 - ✅ Single-use receipt (replay fails)
 - ✅ Tamper-evident — any post-signing mutation fails verification
-- ✅ Verifiable audit trail
 
 It does not trust database state. Only the signed receipt.