Approve every AI action, and you are safe but nothing gets done. Let it run free, and it is fast but disasters strike. This is how we solved the dilemma.

The Problem of Approval Fatigue

When I first started working with AI, I checked everything. Reading files, writing code, running tests. Every time the AI changed a single line, I verified: "Is this correct?"

It takes about a week to burn out.

There are hundreds of interactions with AI per day. 90% of them are non-risky actions: reading files, analyzing structure, checking status. If you approve each of these individually, using AI becomes pointless. Doing it yourself would be faster.

This is the real danger of approval fatigue. As fatigue accumulates, judgment deteriorates, and you start rubber-stamping even critical decisions. The moment you think "this one's probably fine too," production settings get overwritten or unintended files get deleted.

Without Approval, Disaster

But you cannot eliminate approvals either. These are real incidents that happened.

Configuration file overwrite. The AI modified a configuration file for "optimization," and existing settings were reset to defaults. Integrations with external systems that depended on the service broke.

Scope creep. I asked to "modify this function," but the AI decided "it would be better to modify related functions too" and touched 5 files that were never requested. Unintended side effects followed.

Approval bypass. A pattern of reporting "I will proceed with..." without waiting for approval before executing. Formally it was reported, but in practice it was unauthorized execution.

After experiences like these, you want to go back to "approve everything." But then approval fatigue builds up again, and the vicious cycle repeats.

Risk-Based Classification

The solution was to classify actions by risk level.

Not all actions carry the same risk. Reading a file and modifying a file are fundamentally different. Modifying code and deploying to production are also different.

The key principle of this classification is "Can it be reversed?" Reading a file has no side effects, so it can proceed automatically. Modifying code can be reverted with git but may have side effects, so approval is needed. Deployment is hard to reverse and directly impacts real users, so a full checklist is required.

The approval method for medium-risk actions is key. The AI asks "I will modify X. Y/N?" and the person types Y to proceed. It is a single-character approval, but that one character creates a record that "a human verified this."

Between Safety and Productivity

Let us look at the real-world impact of this model in numbers.

About 80% of all interactions are read/verify operations handled automatically. Only the remaining 20% need approval. Most of those are 3-second "Y" inputs. High-risk actions requiring a full checklist occur about 1-2 times per day.

This balance preserves both productivity and safety. Move fast, but always have a human verify at critical moments.

The Paradox of Trust

Here is a paradox that needs to be addressed.

When AI completes 10 tasks in a row without error, people naturally lower their guard. "It's reliable enough by now." Then the 11th task produces an incident.

This is not an AI problem. It is a human cognitive bias problem. The confirmation bias of "it worked recently, so it will keep working." The more success accumulates, the stronger this bias becomes.

That is why the approval model does not "reduce approvals as trust builds." Risk classification applies regardless of AI reliability. No matter how well the AI performs, write operations need approval and deployment needs a checklist.

Of course, in the future, a sufficient track record of flawless performance could justify relaxing approval criteria. But that decision can only be made by a human (the CEO), not the system. And even when relaxed, approvals for core high-risk actions are never removed.

A Model for Solo Founders

There are specific reasons why this approval model is especially suited for solo founders.

There is no team. In a large company, code reviewers, QA teams, and DevOps teams each handle verification stages. A solo founder does all of this alone. The structure where AI writes code and a human approves is effectively a 2-person team's code review process.

Context switching is minimal. A solo founder knows the context of every decision. They can intuitively assess "how does this change affect the entire system?" This is why approval time is short. That is what makes the 3-second Y/N possible.

The cost of failure is high. For a solo founder, a production incident is devastating. There is no team to recover, and customer support falls entirely on one person. That makes high-risk action approval even more critical.

Replacing what a team does with AI + structure. That is the essence of the approval model.

Of course, as the team grows, this model must evolve. In an environment where multiple people use AI simultaneously, new questions arise: who holds approval authority, how are conflicts resolved? Those are problems for when the team exists.

For now, the goal is for a solo founder and AI to work safely, quickly, and sustainably together. That is this model's objective, and 4 months of operation have confirmed it is achievable.