Runlayer

Every time Travis McPeak and I are in the same room, the hot takes keep flying. Here are 6 spicy truths about agent security you won't hear at RSA: 1. Nobody is using just one AI client. Even people at Cursor use Claude, Codex, and whatever shipped last Tuesday. Your security model has to assume multi-client, multi-agent, all the time. 2. Visibility without action is a dashboard, not security. If you can't trace root cause and enforce controls in real-time, you're just watching the breach happen in HD. 3. The real risk isn't code leaking - it's customer data leaking. The moment you connect agents to external tools like Snowflake, Salesforce, or Slack, you've created an attack surface no code review catches. 4. Non-technical people are already using AI tools across every department. You can't train your way out of that. The only answer is secure by design - make the unsafe path impossible, not just discouraged. 5. AI is better than most engineers at securing code. As code generation accelerates, the only viable play for security teams is fighting agents with agents. 6. With all that risk, here's the biggest one - being the company that doesn't enable agents fast enough. Slow adoption isn't caution, it's a different kind of risk. Travis is building the security layer at Cursor. We built the golden path and control plane for agents 🤝

As AI agents multiply across your enterprise, so do the credentials they need. The problem: those secrets often end up scattered in databases, config files, and platforms instead of staying secure. 1Password and Runlayer are changing that. Our new integration keeps your machine credentials where they belong: in your vault. Credentials are resolved at runtime, never stored in the platform, and every access is audited. No more secrets sprawl. No more governance headaches. Just secure, policy-controlled access for your AI agents. 🔗 Learn how 1Password and Runlayer, together, are securing MCP deployments: https://bit.ly/3PARdHf #AI #Cybersecurity #IdentitySecurity #DevSecOps #1Password

AI is no longer just assisting developers. It’s acting with real authority. It’s writing code. Handling secrets. Making decisions. Operating at a pace most security teams can’t fully see or control. So when AI helps ship software: who’s accountable for the risk? At #RSAC2026, Jeff Malnick, VP of AI & Developer at 1Password, moderates a candid discussion with: 🔹Travis McPeak, CISO at Cursor 🔹Andy Berman, CEO at Runlayer 🔹Jason Meller, VP of Product Architecture at 1Password Together, they’ll unpack what’s breaking as AI-driven development becomes the norm, from blurred privilege boundaries and secrets sprawl to the widening gap between developer velocity and security oversight. You’ll leave with practical guidance on restoring trust, accountability, and control without slowing innovation. 📅 March 25 | 12:45 PM – 1:30 PM PDT 👉 Register here: https://bit.ly/3Pyz5h5

We're proud to announce our partnership with 1Password. If you're still pasting passwords into your agent's chat window, or using plaintext .env password files, read on. In 2025, agents acted as extensions of employees. Now, they're fully autonomous. Password and credential access never caught up to this. Until now. Today, 1Password announced Unified Access, a new agent security platform. Runlayer is proud to be a founding partner with our agent control plane, alongside industry leaders like OpenAI, Anthropic, Cursor, and Vercel. Using Runlayer, you get auditable access to every credential your agent sees. All you have to do is integrate 1Password to securely inject credentials into the agent sessions it manages. No more plaintext .env files. Enterprises now have centralized governance over how AI agents access sensitive tools, resources, and context. Check it out at the link below, and give your agents secure superpowers.

Every year at RSA Conference, security leaders spend 3 days debating the biggest threats to their org. This year the answer is already running in their Slack workspace. Nobody asked security. AI agents, MCP tools, autonomous workflows, your employees didn't wait for a strategy. They built one themselves. Most of it is connected to systems your security team has never seen. We built Runlayer for exactly this. Our team will in SF March 23–26. Come talk to us: https://lnkd.in/etfz79K6