Insecure Agents is a podcast that curates the most important conversations and trends in AI security. AI engineers, CISOs, and security practitioners listen to learn how to give their agents the security they need to reach higher levels of capability and autonomy.

Allie Howe

ALLIE HOWE HOST

Allie Howe is a Member of Technical Staff at Keycard and has a background in security engineering. She is a core contributor to the OWASP Agentic Security Initiative and has spoken at AI Engineer World's Fair and AI Agent Security Summit.

𝕏 @vtahowe in /allisonhowe

© 2026 Insecure Agents Podcast / Keycard

Damian Schenkelman — VP of R&D at Auth0
#34 Jun 8

Damian Schenkelman,
VP of R&D at Auth0

We sit down with Damian Schenkelman, VP of R&D at Auth0, to dig into why so many AI security incidents trace back to auth. We dig into recent incidents in the news, MCP, the act claim chain, and the future of agent identity. The conversation explores the core problem agents create: when an agent hands a task to a sub-agent, which calls an MCP server, which hits a SaaS API, who is actually making the call, and on whose behalf?

Play episode
Dick Hardt — Creator of OAuth, Founder of Hellō
#33 Jun 3

Dick Hardt,
Creator of OAuth, Founder of Hellō

We sit down with Dick Hardt, the creator of OAuth, to talk about why the auth primitives we built for the web fall apart the moment agents start acting on our behalf and how AAuth gives every agent its own cryptographic identity so developers can run agents without handing out API keys.

Play episode
Geoff Huntley — Founder of LatentPatterns.com
#32 May 7

Geoff Huntley,
Founder of LatentPatterns.com

We sit down with Geoff Huntley, creator of the Ralph Wiggum Loop and founder of LatentPatterns.com, to hear his take on where AI is pushing software next: hyper-personalized software, software factories, and eventually product factories that optimize themselves for revenue.

Play episode
Daytona Compute — Sandboxes & the infrastructure underneath
#31 Apr 8

Daytona Compute,
Sandboxes & the infrastructure underneath

We sit down with top AI engineers such as Sherwood Callaway, founder of Sazabi, Anthony Shew, core maintainer of turborepo at Vercel, and Dexter Horthy, CEO of HumanLayer, to hear about how they are using sandboxes to make agents more performant.

Play episode
Mark Dorsi — CISO at Netlify
#30 Apr 2

Mark Dorsi,
CISO at Netlify

Mark Dorsi, CISO at Netlify, sits down with us at RSAC to talk about the shift to everyone becoming a builder and how he's coding 6 hours a day and how products, including Netlify, must adapt to a world where most users are agents.

Play episode
Kyle Bhiro and Josh Kotrous — Pensar
#29 Apr 2

Kyle Bhiro and Josh Kotrous,
Pensar

Kyle Bhiro and Josh Kotrous from Pensar join us at RSAC to discuss how AI is reshaping the entire AppSec industry. Kyle and Josh elaborate on how agentic code scanning and continuous testing is leading to AppSec market consolidation and new expectations around AppSec spend. We also explore the thought that point in time…

Play episode
Ian Webster — CEO & Co-Founder of promptfoo
#28 Apr 1

Ian Webster,
CEO & Co-Founder of promptfoo

Ian Webster, CEO and Co-Founder of promptfoo, joins us at RSAC to discuss OpenAI's recent acquisition of promptfoo. Ian discusses how appealing to both developers and security teams was key to promptfoo's go-market-strategy strategy. Ian's success offers a playbook for other AI security companies that may be targeting a…

Play episode
Alex Stamos — Chief Product Officer at Corridor
#27 Apr 1

Alex Stamos,
Chief Product Officer at Corridor

Alex Stamos, former CISO of Facebook and current Chief Product Officer at Corridor, explains how AI is reshaping the kill chain and enabling new capabilities for attackers worldwide. He also outlines what’s needed to defend against these emerging threats and how to prepare your organization for what’s coming.

Play episode
Animesh Koratana — CEO of PlayerZero
#26 Mar 23

Animesh Koratana,
CEO of PlayerZero

Animesh is the CEO and founder of PlayerZero, a company using context graphs to build a complete picture of how your production software actually behaves. Animesh's X article on context graphs went viral getting over 2M views.

Play episode
Pavan Kulkarni and Aaron Tainter — WorkOS FGA Launch
#25 Mar 5

Pavan Kulkarni and Aaron Tainter,
WorkOS FGA Launch

The agent identity conversation is back on the Insecure Agents podcast. Developers are starting to feel the pain of missing agent identity infrastructure as they think through problems like agent memory access and storage and goal based authorization for tools and resources unplanned for at agent inception.

Play episode
James Cowling — Co-Founder and CTO of Convex
#24 Feb 20

James Cowling,
Co-Founder and CTO of Convex

James sits down to tell us about OpenClaw using Convex, how proper architectural building blocks sets you up for better security, and how the shift to agents writing all of software changes who platforms like Convex are building for.

Play episode
Cailyn Yong — Founder of Momo
#23 Feb 16

Cailyn Yong,
Founder of Momo

You've heard of OpenClaw, but have you heard of Momo? Momo is built by Cailyn Yong and is a personal assistant agent for teams. Momo's memory actually works and makes it stand out against other agents such as OpenClaw.

Play episode
Kwindla Kramer — CEO of Daily and creator of Pipecat AI
#22 Jan 30

Kwindla Kramer,
CEO of Daily and creator of Pipecat AI

In this episode we discuss the engineering and security challenges that separate POC agents from enterprise agents. Kwindla brings a wealth of knowledge on common hard agent engineering problems such as async, automatic, non-blocking context compaction, agent memory, and stateful long running agents.

Play episode
Peter Steinberger — Creator of Clawdbot
#21 Jan 25

Peter Steinberger,
Creator of Clawdbot

Listen in to learn how Peter created the best personal assistant agent to date and the security concerns at play. Personal assistant agents need lots of access to do meaningful work but there are tradeoffs between innovation and security.

Play episode
Ivan Burazin — Co-Founder & CEO of Daytona
#19 Dec 23

Ivan Burazin,
Co-Founder & CEO of Daytona

Agents need purpose-built sandboxes that spin up in milliseconds to execute tasks like code analysis, web browsing, and data processing. Ivan addresses the hurdles around speed, security, and statefulness.

Play episode
Kikimora Morozova — Security Researcher at Trail of Bits
#18 Dec 22

Kikimora Morozova,
Security Researcher at Trail of Bits

An attacker can hide prompt injections in images that only become to AI systems, enabling data exfiltration on production systems like Google Gemini CLI. Is weaponized image scaling a security vulnerability, or an architectural flaw in how AI systems process multi-modal inputs?

Play episode
Aaron Stanley — CISO of dbt Labs, Ian Livingstone, CEO of Keycard & Dex Horthy, CEO of Human Layer
#17 Dec 18

Aaron Stanley,
CISO of dbt Labs, Ian Livingstone, CEO of Keycard & Dex Horthy, CEO of Human Layer

We sat down to discuss the just released OWASP Top 10 for Agentic Applications, exploring critical threats like goal hijacking, remote code execution, and identity management while breaking down how to balance AI agent autonomy with deterministic guardrails and user trust.

Play episode
Peyton Casper — Identity & Trust at Browserbase
#16 Dec 11

Peyton Casper,
Identity & Trust at Browserbase

Browser agents need standardized ways to identify themselves and prove their legitimacy when accessing the web. We take a deeper look at credential management, scoped permissions models, telemetry for monitoring behavior, and implementing hard boundaries to prevent prompt injection and unauthorized actions for browser agents.

Play episode
Ian Livingstone — CEO of Keycard and Dex Horthy, CEO of HumanLayer
#15 Dec 3

Ian Livingstone,
CEO of Keycard and Dex Horthy, CEO of HumanLayer

The highly anticipated MCP debate. We explore critical questions around SDK replacement, marketplace curation, enterprise concerns, authentication challenges, and whether MCP represents a security nightmare or the future of agent systems.

Play episode
Bryan Russett and Alex Kesling — Co-Founders of Empathic
#14 Oct 30

Bryan Russett and Alex Kesling,
Co-Founders of Empathic

Bryan and Alex discuss how AI agent architecture directly impacts security posture. We take a look at everything from infrastructure-level guardrails rather than relying solely on tool-call layer protections to the cold start problem and defense-in-depth strategies against prompt injection.

Play episode
Samuel Colvin — Founder & CEO of Pydantic
#13 Oct 2

Samuel Colvin,
Founder & CEO of Pydantic

Samuel Colvin founded Pydantic in 2017 and launched the company in 2023. He discusses MCP security vulnerabilities, AI agent authentication challenges, and the upcoming Pydantic AI Gateway for threat detection.

Play episode
Steve Vandenburg — AI Security Architect at Cotiviti
#11 Sep 11

Steve Vandenburg,
AI Security Architect at Cotiviti

Steve Vandenburg, AI Security Architect at Cotiviti, discusses the evolving role of AI security in enterprise environments and how frameworks like NIST AI RMF, HITRUST, and the new SAIL framework translate from policy into real technical implementation.

Play episode
Dor Sarig — Co-Founder & CEO of Pillar Security
#10 Sep 4

Dor Sarig,
Co-Founder & CEO of Pillar Security

Dor Sarig has spent nearly two decades in cybersecurity, from offensive work with the Israeli government to leading product roles at Simulate and Perimeter 81. Now CEO of Pillar Security, a unified platform to secure the entire AI lifecycle and is behind the SAIL framework.

Play episode
Ian Livingstone — Co-Founder & CEO of Keycard
#9 Aug 14

Ian Livingstone,
Co-Founder & CEO of Keycard

This week we're taking a deep dive on the agent identity problem. Ian Livingstone, Matt Creager and Jared Hanson founded Keycard to accelerate agent adoption without sacrificing control.

Play episode
John Sotiropoulos — Co-Lead of OWASP ASI and Head of AI Security at Kainos
#8 Jul 28

John Sotiropoulos,
Co-Lead of OWASP ASI and Head of AI Security at Kainos

John has written books on adversarial AI, guidelines for the UK government and laid out the globally adopted OWASP LLM Top 10. On this episode of Insecure Agents, he discuss the upcoming release of the OWASP Agentic Top 10.

Play episode
Kyle Ryan — Head of Artificial Intelligence at Dune Security
#7 Jul 24

Kyle Ryan,
Head of Artificial Intelligence at Dune Security

Dune Security simulates AI-driven social engineering attacks—like phishing, smishing, and voice cloning—to identify and train at-risk employees before real breaches occur. On this episode, Kyle Ryan discusses how generative AI is supercharging phishing tactics, how Dune adapts training to individuals’ vulnerabilities, and why both humans and AI agents must be hardened against persuasion-based attacks.

Play episode
Aengus Lynch — AI Safety Researcher at Anthropic
#6 Jul 17

Aengus Lynch,
AI Safety Researcher at Anthropic

Aengus Lynch is a doing a PhD in ML, is a contractor for Anthropic, and is working on something new. Following his viral research, he joins Insecure Agents to discuss the concerning potential for AI agents to engage in blackmail and manipulation tactics against humans.

Play episode
Vineeth Sai Narajala — AI Security Engineer at AWS
#4 Jun 26

Vineeth Sai Narajala,
AI Security Engineer at AWS

Vineeth is a busy guy. He co-leads key initiatives at OWASP, including the Agent Name Service (ANS), the AI Vulnerability Scoring System (AI‑VSS) and the Agentic AI Top 10.

Play episode
Kerem Proulx — Co-Founder & CEO of Pensar
#3 Jun 26

Kerem Proulx,
Co-Founder & CEO of Pensar

Kerem Proulx is Co-Founder of Pensar, the security layer for coding agents. In front of a live audience during New York Tech Week 2025, we discuss agent orchestration security concerns, identity security in a post AI agent world and AI agents becoming primary users of products.

Play episode