How We Secured AI Worker Agents in Harness | Harness Blog
When we launched Autonomous Worker Agents, the message we led with was simple: governance is inherited, not integrated. Agents don't get security bolted on after the fact. They inherit the OPA policies, RBAC, and audit trails already running your production pipelines. This post is about the layer underneath that promise: isolation. We let an Autonomous Worker Agent run shell commands and call APIs inside our pipelines.