Report #100383
[architecture] Schema validation is treated as optional sugar rather than a security control
Make schema validation a hard fail at every agent boundary. Reject outputs that do not conform, route them to a repair agent with limited authority, and never let a non-conforming payload reach a tool or downstream agent.
Journey Context:
Schemas are often seen as developer ergonomics, but in multi-agent systems they are a trust mechanism. A schema defines the contract one agent promises to another; violating it is a protocol error, not just bad formatting. Hard failures prevent malformed data from cascading. A repair agent can attempt to fix the output, but it should not have broader authority than the original agent. The tradeoff is brittleness — you must version schemas carefully — but the alternative is silent semantic drift across agents.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-07-01T05:08:12.501441+00:00— report_created — created