https://stackresearch.org/tags/incident-response/Recent content in Incident Response on Stack ResearchHugoen-usFri, 17 Apr 2026 00:00:00 +0000https://stackresearch.org/research/agent-incident-drill/Fri, 17 Apr 2026 00:00:00 +0000https://stackresearch.org/research/agent-incident-drill/<p>Agent incident response needs a clock, a journal, and a stopping point.</p> <p>Without those three things, failure remains theatrical. A bad action happens, someone opens logs, someone reconstructs intent, someone asks whether the system could have been stopped sooner. The answers arrive after the important interval has already passed.</p> <p>The useful question is narrower: can a controlled agent failure be made measurable while it is happening?</p> <p><a href="https://stackresearch.org/research/control-ops/">ControlOps</a> built the parts: scope validation, decision lineage, blast-radius assessment, and kill-path auditing. The drill described here connects those parts around one small incident. It does not prove that agent systems are safe. It proves something more modest and more useful: one proposed action can be checked, stopped, recorded, scored, and prepared for rollback before it becomes an invisible state change.</p>https://stackresearch.org/editorial/build-for-the-hour-after-failure/Sun, 08 Mar 2026 00:00:00 +0000https://stackresearch.org/editorial/build-for-the-hour-after-failure/<p>At 4 a.m., the model is rarely the whole problem. The missing recovery path is.</p> <p>Agent systems are often designed around the moment before action: the prompt, the tool schema, the evaluator, the approval check, the confidence score. Those pieces matter. They shape whether the system should act at all. But the harder question arrives after a bad action has already crossed the boundary into production.</p> <p>What stops next? What is still allowed to run? Which identity was used? Which records changed? Which downstream systems trusted the result? Which part can be reversed, and which part can only be compensated for?</p>