AI engineers and security practitioners listen to us to learn how to give their agents the security they need to reach full autonomy and capability.
Joined June 2025
- Tweets 167
- Following 104
- Followers 877
- Likes 385
92 Photos and videos
“Hey you get access to one email, you can send one email to this person. So those are like very fine grained policies.
Regardless of how you get to that policy it would be nice to give the agent a credential to read these specific emails or emails from this person.” - @yenkel
1
2
194
Register for AAuth Night: Moving Beyond OAuth on July 1st alongside AI Engineer
luma.com/a2h25m60
61
We went to Cafe Cursor in SF today and asked devs how they're managing agent credentials @cursor_ai
6
8
29
13,686
Come join us for AAuth Night: Moving Beyond OAuth during @aiDotEngineer if you want to learn more about current agent auth best practices and the future of agent auth
luma.com/a2h25m60
7
230
"So when people typically think about delegating, they're like, ok the agent can do things on my behalf for one of my Gmail accounts. But that doesn't tell Google that it's the same person using Gmail." - @yenkel
2
6
2,184
Full episode with Damian, VP of Research and Development at Auth0, is LIVE
youtu.be/bswYDlRqefQ
1
266
Insecure Agents Podcast retweeted
Jun 5
OAuth is out, haven't you heard?
1
2
8
935
"The one that everyone keeps talking about is like whenever a database gets dropped, right? That would be one of those types of calls that the resource says is like, okay, you can call drop table, but you're going to go and have to get permission" @DickHardt
1
2
7
559
Join us for AAuth Night: Moving Beyond OAuth on July 1st
luma.com/a2h25m60
88
"Since you're the founder of OAuth I was wondering, why don't we just extend OAuth to fix agent auth?"
"Well, because it wasn't designed for these things. And so by the time you go and you make all the changes you want to make, it isn't OAuth at all." @DickHardt
1
1
1,098
Full episode available wherever you get your podcasts
insecureagents.com
100
The future of auth for agents is here
@DickHardt, founder of OAuth, tells us why OAuth isn't working for agents and why we need a new protocol he's working on called AAuth
Full episode available now wherever you get your podcasts
1
2
4
343
Dick will be joining us at AAuth Night on July 1st during AIE World's Fair. Come join us to learn more about AAuth and how you can run agents without API keys
luma.com/a2h25m60?utm_source…
2
3
190
Big news!! We've joined @KeycardLabs 🎉
We're excited to continue to grow the Insecure Agents Community and advance the industry together.
1
11
5,750
For those building with MCP at scale some big changes just dropped
The protocol is now stateless making horizontal scaling, routing, and tool discovery easier.
MCP continues to improve and deliver value as @ianlivingstone predicted during the MCP debate at AIE Code in November
May 22
Session-less MCP is a great step forward - some really nice changes here.
The vibe shift back to MCP is coming, especially as internal app building starts to take off.
2
479
Insecure Agents Podcast retweeted
May 15
Great night at the @insecureagents event at @AICouncilConf. Our co-founder @ianlivingstone was on the panel with @sentry, @browserbase, and @Cloudflare talking about why identity is the bottleneck for agents, followed by a packed happy hour. Thanks to Insecure Agents for putting this together and thanks to everyone that came out.
1
3
10
828
Thanks to all our panelists for a great discussion on building internal AI
We learned how Cloudflare doubled MR velocity, Browserbase’s feature request pipeline runs at 100% coverage, and how Sentry turned a full debugging session into 1 slack message
@pk_iv @zeeg @ianlivingstone @irvinebroque
1
10
798
