Tag · Security
Security
4 posts tagged “Security”.
Security · 2026-05-01
AI agent security in 2026: the real threats
Threat-modeling AI coding agents is not the same as web-app security. The agent has a shell, holds your credentials, and reasons about prompts that may be hostile. A working threat model covering prompt injection, ambient credentials, tool misuse, and exfiltration, plus a runtime checklist that maps the threats to mitigations engineers can actually implement.
Sovereignty · 2026-05-01
Sovereign AI: what it actually means for engineers in 2026
The phrase has been hijacked by trade-policy threads about which country trains the next foundation model. For engineers, sovereign AI is the runtime question: who owns the credentials, the context, and the compute the agent runs inside. A working definition, the failure modes that show up when sovereignty is missing, and what the runtime answer looks like.
Architecture · 2026-05-01
Peering: cross-sandbox access without cross-trust
Multi-agent setups want one agent to read another's source code without inheriting that agent's credentials. Most platforms get this wrong by mounting the whole project, .env files included. The peering primitive lets parallel agents collaborate without becoming each other's attack surface.
Security · 2026-05-01
Zero-knowledge BYOK: keys the platform can't see
Most BYOK products store your API key encrypted at rest, decrypt it on use, and trust their own infrastructure. Zero-knowledge BYOK removes the trust step entirely. The platform stores ciphertext only, the key is encrypted client-side with a passkey-derived secret, and the server never has plaintext access to the key. The pattern, the cryptographic primitives, the limits.