Who's watching what your AI agent does when you're not looking?

This isn't about AI being dangerous. It's about a habit most of us have developed without noticing.

You start a Claude Code session. The agent asks permission for the first action. You read it, approve. Second action — you read it, approve. Third action — you skim it, approve. By the fourth or fifth, you've clicked "don't ask again for this session" and gone back to whatever you were doing.

That's not carelessness. That's a completely rational response to an approval-fatigue problem that the tools themselves create. The agents ask too often, for too many things, and we adapt by tuning them out.

The problem gets worse when you're working remotely. I run AI coding sessions in two ways: sometimes through OpenClaw connected to Telegram, where I send messages and the agent executes actions on my machine. Sometimes through Claude.ai on my phone, running a remote session. Either way, you're watching a small screen, approving actions with limited context, and eventually you stop reading carefully.

One day I came back to my machine and found that the agent had modified files I didn't expect — not maliciously, just confidently. An .env file updated. A config changed. A dependency added. Nothing catastrophic. But I had no record of it. I couldn't tell what changed, when, or why.