At 1Password, we give AI builders the ability to discover, secure, and audit access.
Joined April 2026
- Tweets 62
- Following 37
- Followers 24
- Likes 18
29 Photos and videos
What if your security reviews never fell behind your dev velocity again?
"The LLM can produce it. Other LLMs can come and review it. Once everything's good, it just gets auto-deployed." @travismcpeak, Head of Security @Cursor_ai, on “everything-as-code” in 2026.
Zero-Shot Learning episode 3 drops next week 🎙️
#SecurityEngineering #AI #ZeroShotLearning
15
Copy-pasting secrets into .env files. Plaintext credentials on disk. API keys DM’d over Slack.
That’s how most dev teams handle secrets today, and these are all risks.
1Password Environments changes that, and just got even better:
🔍 Global search across all your accounts
↕️ Search & sort within environments
✨ Refreshed UI
Stop copy-pasting secrets. Start using Environments: bit.ly/4xpCG2t
1
26
There's an adage in security: you can't protect what you can't see.
We’re helping organizations close that gap. @NancyZWang, CTO @1Password, walks through how 1Password Unified Access secures every human, agent, and machine identity. The same system you trust to secure your people, now securing your agents and machine workloads.
#UnifiedAccess #AgenticAI #IdentitySecurity #ZeroKnowledge #CISO #1Password
21
“Agents have access to credentials and act at machine speed, which means that if they have access to a sensitive credential they can replay that action over and over again. Imagine sending money to an offshore account 100,000 times within an hour.” @NancyZWang, CTO @1Password, joins @NYSE floor talk to unpack how real risk can scale when an agent has the right access but takes action in the wrong context. youtube.com/watch?v=k7tYo0db…
24
Two community builders saw an opportunity, pitched the idea, and shipped it. The result: a Microsoft Security Copilot plugin that lets you query @1Password audit data in Microsoft Sentinel using natural language. The plugin is now available in the 1Password Marketplace: bit.ly/4xoo3wo
#MicrosoftSentinel #MicrosoftSecurityCopilot #SIEM #IdentitySecurity #1Password #CommunityBuilt
1
28
"I think there's a ton of things that people don't genuinely enjoy about their jobs, and I hope that Vercel replaces all of the things that people hate about their jobs." - @tomocchino (CPO @vercel)
On this episode of Zero-Shot Learning @NancyZWang, Dev Tagare, and @tomocchino discuss how AI is removing friction from development, empowering more builders, and how to make the systems secure by default.
Full episode: youtu.be/AFr8WTbCo7s
#ZeroShotLearning #AgenticAI #DeveloperSecurity #1Password #Vercel #developers
31
1Password for Builders retweeted
Jun 7
Things I started using today that I wish I started using earlier:
1. Terraform for my Cloudflare Accounts.
2. 1Password CLI for Tokens and Secrets.
22
2
272
38,512
You can secure developer secrets using the tool your team already trusts. No new tool roll-out and no disruption to your workflow.
Join our live demo to see how 1Password Enterprise Password Manager secures developer secrets.
🗓️ June 10 | 9 AM PDT / 12 PM EDT
Register: bit.ly/49CoCbP
1
36
Database provisioned in one click. Full-stack app without closing a tab. @tomocchino, CPO @vercel, builds a portfolio tracker (real DB, real auth) live on Zero-Shot Learning Ep. 2.
Also in this episode:
🔹 The prototype is the new PRD
🔹 Security guardrails for AI agents
🔹 How the role of frontend engineers is shifting
🎙️ Lock in: bit.ly/4fndjb9
#builders #AI #ZeroShotLearning #1Password #Vercel
56
Who holds the keys when AI agents enter the workforce? @NancyZWang, CTO @1Password, joins the Tech Talks podcast to discuss secure access for machines and agent identities, and why she deliberately trades development velocity for confidential computing.
🎧 apple.co/4uMOgmP
1
39
"A lot more people can become empowered to build." @tomocchino, CPO @vercel, on what actually changes when LLMs write the code. Releasing tomorrow, this new episode of Zero-Shot Learning explores how AI is collapsing the gap between idea and shipped product.
#builders #AI #ZeroShotLearning #1Password #Vercel
36
Connecting an agent to Google Drive is now a standard deployment pattern. @ithilgore, Agent Security Lead @OpenAI, laid out how this becomes an attack vector when an agent reads and acts on every message it receives, including ones engineered to manipulate it.
The fix isn’t cutting access, it is constraining what the agent trusts within that access.
Zero-Shot Learning episode 1, Dive in: bit.ly/4o4LS8v
34
“With Gen UI, the component library stops being the end of the handoff and starts being the substrate the model renders from.” Andrew Qu, CTO, @Vercel
As teams embed agents into design system workflows, the ratio of human judgment to agent implementation has changed. More here: bit.ly/3S5SMy3
47
We pointed a coding agent at our design system backlog. The first attempt was a mess.
The agent filled knowledge gaps with confident-sounding guesses. Components that looked right but were semantically wrong. PRs that passed tests but weren't idiomatic.
1
63
The unexpected outcome: designers got the same setup.
Paste a Figma link, describe intent, get an interactive prototype built from real components with a shareable deploy link for stakeholder review.
The pipeline we built for engineers became a prototyping tool for the whole product team.
1
40
What we learned:
The agent's output ceiling is the quality of its input. Human ticket qualification can't be delegated.
Narrow skills beat broad ones. One "implement a design system ticket" skill didn't work. Eight focused skills did.
Treat agent credentials like machine credentials. Short-lived, scoped access is the baseline.
Full write-up: bit.ly/3S5SMy3
20
2/3 of organizations have already experienced a security incident tied to AI agent deployment. The problem isn’t the agents. It’s how agents are accessing credentials. @Forbes covered our collaboration with @OpenAI to bring agentic security to Codex. Dive in: bit.ly/4f1kOo5
#AgenticAI #IdentitySecurity #OpenAI #DevSecurity #1Password
35
Workload auth and human attribution. If you can't trace an agent action back to a human, governance is already gone. @ithilgore (@OpenAI), @JeffMalnick and @NancyZWang (@1Password) discuss why authorization frameworks weren’t built for agent identities. Zero-Shot Learning Ep 1: youtu.be/w2TFGN1IfIM?si=Yg6o…
1
1
412