Blog

Engineering insights and lessons from building AuthzX.

Agent SecurityMay 7, 2026·8 min read

The agent didn't know it was in production.

A DevOps agent wiped an EKS production cluster because it inherited the engineer's context switch. Two policies would have confined it to staging.

Agent SecurityApril 30, 2026·8 min read

Nine seconds. One agent. No database.

An AI coding agent dropped a production database in nine seconds. No policy prevented it. Here's the architectural gap and how a five-line policy would have stopped it.

VisionApril 27, 2026·8 min read

Why we built AuthzX

Authorization is broken. Every team rebuilds it from scratch, most solutions ignore AI agents entirely, and the gap between policy engines and developer experience is enormous. Here's why we started AuthzX.

EngineeringApril 27, 2026·10 min read

We dogfooded AuthzX — here's what broke

We used AuthzX to authorize our own admin dashboard. Provisioning bugs, duplicated code, Rego fan-out issues, and hard lessons about eating your own cooking.