Rob Allandale
AI research / signal desk
Briefing · 10/05/2026

AI teammates won’t bypass trust systems. The good ones will work with humans to satisfy them.

The practical bottleneck for AI teammates may not be model capability. It may be trust plumbing: identity, delegation, approval gates, audit trails and accountable humans still on the hook.

AI teammates won’t bypass trust systems. The good ones will work with humans to satisfy them.

LinkedIn blocking the Automation Nation company-page setup was not just platform friction.

It was a useful signal.

The system was doing what it was designed to do: slowing down suspicious automation, fake company creation, lead-gen farms, scraper accounts, and bot-driven outreach. That threat model is real. Platforms should defend against it.

But the newer pattern is different:

  • a named human;
  • a real business;
  • a delegated AI teammate;
  • explicit approval boundaries;
  • no scraping, spam, or private-data farming;
  • a human stepping in when the trust surface requires one.

The platform could not tell the difference between extractive automation and accountable delegation.

That is the trust bottleneck.

AI teammates need trust surfaces

AI teammates do not only need tool access. They need trust surfaces.

A trust surface is the visible layer where a system, customer, platform, or partner can answer:

  • who is the accountable human or organisation?
  • what is the AI teammate allowed to do?
  • what is it not allowed to do?
  • when does a human approve external action?
  • what identity is acting: person, company, or delegated agent?
  • is there an audit trail?
  • can the permission be revoked?
  • does the platform understand this as delegation rather than impersonation?

Without that, good AI teammates look too much like bad bots.

That is not because the good AI teammate is doing something wrong. It is because the trust system cannot yet see the difference.

The bottleneck is trust plumbing

The bottleneck for practical AI teammates may not be model capability.

It may be trust plumbing:

  • verification;
  • identity;
  • delegation;
  • approval gates;
  • account permissions;
  • platform rules;
  • auditability;
  • human-recognised responsibility.

The agent can draft, fill, research, compare, prepare and monitor. But when the system needs proof of legitimacy, the human and organisation still matter.

That is not a weakness.

It is the shape of responsible delegation.

The LinkedIn example

The Automation Nation setup hit LinkedIn’s anti-abuse gates:

  1. first, a new-account delay;
  2. then a workplace/company verification requirement;
  3. finally, the human stepped in and completed the trust step.

The win was not bypassing LinkedIn.

We did not bypass anything.

The win was that the human and AI teammate pair completed the legitimate trust path together.

That distinction matters.

A bad automation pattern tries to evade the gate. A useful AI teammate stops, surfaces the blocker, explains what is needed, and brings the accountable human into the loop.

That is not failure. That is good operational behaviour.

The awkward middle stage

There is a messy transition period here.

Platforms have spent years building systems to detect fake accounts, bot activity, mass scraping, suspicious company creation and automated spam. They are right to do that.

At the same time, serious organisations are starting to use AI teammates for legitimate delegated work:

  • preparing business setup tasks;
  • drafting public pages;
  • checking forms;
  • gathering non-sensitive context;
  • coordinating operational workflows;
  • monitoring inboxes or notifications;
  • preparing responses for human approval;
  • handing off when verification is required.

Those two realities currently collide.

From the platform’s point of view, a delegated AI teammate can look like automation risk. From the organisation’s point of view, the AI teammate may be operating inside explicit boundaries, under human supervision, with a real business purpose.

The missing layer is not “let the bots through”.

The missing layer is accountable delegation.

Delegation is not impersonation

This distinction will matter more as AI teammates become normal.

An AI teammate should not pretend to be an independent human. It should not hide the accountable organisation. It should not scrape, spam, evade checks or act beyond its scope.

But it also should not be forced into a false binary where the only recognised actors are:

  • a human manually clicking everything; or
  • suspicious automation.

There is a third category emerging:

authorised AI delegation under human accountability.

That category needs better surfaces.

For platforms, that might mean clearer delegated-agent permissions, better verification flows, audit fields, organisation-level controls, revocation, rate limits and human approval markers.

For organisations, it means being explicit about where AI can act, where humans must approve, what gets logged, and who is accountable when something goes wrong.

This is a governance problem, not just a UX problem

The tempting answer is to treat this as bad user experience.

It is bigger than that.

Trust systems decide who is allowed to act. They protect platforms, users, customers and organisations from abuse. When AI starts participating in real work, those systems need to understand more than login state.

They need to understand delegation.

Useful questions:

  • Is the AI acting for a verified person or organisation?
  • Has the human authorised this class of action?
  • Is the action internal, preparatory, external or binding?
  • Does it require human approval before submission?
  • Can the platform attribute the action properly?
  • Can the organisation review what happened later?
  • Can access be narrowed or revoked?

That is governance at the interface layer.

It is where policy, product design, identity and operations meet.

The practical rule

For AI teammates, the goal should not be to sneak around trust systems.

The goal should be to satisfy them cleanly.

That means the AI teammate should be able to:

  • recognise when a trust gate has appeared;
  • stop before doing anything risky;
  • explain the blocker plainly;
  • preserve the state of the task;
  • ask the human for the specific verification step;
  • resume after the human completes it;
  • leave an audit trail of the handoff.

That is slower than blind automation.

Good.

Some tasks should be slow at the trust boundary.

The bigger signal

The next phase of AI adoption will not only be about better models, bigger context windows or more capable agents.

It will be about whether organisations can create trustworthy operating patterns around those agents.

The future of AI teammates is not agents sneaking around trust systems.

It is humans and agents satisfying those systems together, with clearer delegation, better audit trails, and an accountable person still on the hook.

Keep reading
EssayThe office AI question is mostly a governance question

For employees, the safest way to use AI at work is not to sneak tools into workflows. It is to understand the policy, classify the data, keep an audit trail and use AI where it improves judgment without becoming an unapproved system of record.

BriefingDo not put identity, email and automation in the same blast radius

A practical lesson from brittle platform dependency: if one account failure can kill mail, auth, storage and automation at once, the system is not resilient - it is convenient.

BriefingOpenClaw is closer to an AI teammate runtime than an app

The interesting part of OpenClaw is not chat. It is the runtime around chat: memory, tools, files, browser control, cron, sessions, approvals, model routing, and operator-owned state.

Start Here · RSS feed · Process Digitisation Checklist

Was this useful?

Quick signal helps Rob sharpen future briefings.

Share this signal
Signal soundtrack Dark Driving Techno
0:00 0:00