The AI Agent Access Control Problem
Everyone’s shipping AI agents right now. Connect your agent to Slack, let it read your email, have it make PRs on your behalf. This can be via MCP, no-code AI tools like n8n or direct via APIs. However, we’re in this awkward middle ground where the tooling to use agents is miles ahead of the tooling to secure them. The fundamental problem isn’t new, it’s the same challenge we’ve had with any system that acts on behalf of a user, but agents amplify it in ways that existing access control patterns weren’t built for....