Phantom Constraints: The Governance Layer You Can't Audit
Agent governance audits that only verify actual permissions miss a critical failure mode: the agent's own model of what it can and cannot do. This self-model is itself a governance layer — and it's the least auditable one.