As large language model (LLM) agents are integrated into autonomous cloud operations, distributed systems face a semantic reliability problem: proposer agents can generate production mutations, such as modifying IAM policies, opening firewall security groups, or executing data exports, that are syntactically valid and statically authorized but operationally unsafe. Classical distributed consensus protocols replicate deterministic state transitions but do not evaluate the safety of the proposed intent. To address this gap, we introduce Semantic Quorum Assurance (SQA), a control-plane primitive for governing non-deterministic agentic infrastructure. SQA represents proposals as declarative execution contracts bound to cryptographic evidence chains and routes them to a diverse panel of read-only, sandboxed validator agents. SQA aggregates their judgments under a risk-adaptive quorum predicate that enforces model and archetype diversity, adjusts weights based on calibrated assurance scores, and respects archetype-specific vetoes. Admitted proposals execute only through a sovereign execution gate. We instantiate SQA in a cloud-native control plane and formalize a correlated cognitive failure model for non-deterministic validators. On 500 infrastructure-inspired mutation scenarios, with safety results reported on held-out safe/unsafe trials excluding ambiguous scenarios, SQA reduces unsafe approval from 18.5% for single-agent validation to 0.3% while adding median validation latency of 1.45--4.12 seconds across the studied risk buckets.

翻译：随着大语言模型（LLM）代理被集成到自主云操作中，分布式系统面临一个语义可靠性问题：提议代理可能生成语法有效且静态授权但操作不安全的生成式变更，例如修改IAM策略、开放防火墙安全组或执行数据导出。经典分布式共识协议复制确定性状态转换，但并未评估提议意图的安全性。为解决这一空白，我们引入语义法定数保证（SQA）——一种用于治理非确定性代理基础设施的控制平面原语。SQA将提议表示为绑定到密码证据链的声明式执行合约，并将其路由给由只读、沙盒化验证代理组成的多样化小组。SQA在风险自适应法定数谓词下聚合其判断，该谓词强制模型和原型多样性，根据校准的保证分数调整权重，并尊重特定原型的否决权。通过的提议仅通过主权执行门执行。我们在云原生控制平面中实例化SQA，并为非确定性验证器形式化了一个相关的认知失败模型。在500个基础设施启发的变更场景中（安全性结果基于保留的安全/不安全试验报告，排除模糊场景），SQA将不安全批准率从单代理验证的18.5%降低至0.3%，同时在研究的不同风险桶中增加的中位验证延迟为1.45-4.12秒。