We were building a DevOps agent to help with on-call remediation. The idea was straightforward: when an incident fires, the agent reads the relevant runbook from our internal wiki, assesses the situation, and executes the appropriate remediation steps. No waiting for an engineer to wake up at 3 am, find the right page, and manually run through a checklist. The agent had the context, the tools, and the access it needed to act.It needed elevated privileges to do the job. Restarting services, scaling resources, in some cases deleting and recreating stacks. That access was intentional. You cannot fix infrastructure problems without the authority to change infrastructure.