OpenID Connect
PulseAugur coverage of OpenID Connect — every cluster mentioning OpenID Connect across labs, papers, and developer communities, ranked by signal.
5 day(s) with sentiment data
-
AI Agents Outpace Identity Standards, Security Experts Warn
The development of AI agents is outpacing the creation of standardized identity and security protocols, creating challenges for secure authorization. Experts from the identity and security fields are highlighting the ne…
-
Slurm-web v7.0.0 adds SSO, container support for HPC
Slurm-web has released version 7.0.0, introducing significant enhancements for High-Performance Computing (HPC) users and administrators. This update includes support for single sign-on via OpenID Connect, deployment op…
-
Publish MCP AI tools to PyPI using API tokens or OIDC
This article details two methods for publishing an MCP (Model Context Protocol) server to PyPI, enabling AI systems to access custom tools. The first method involves using an API token stored as a GitHub secret, which o…
-
Microsoft packages compromised twice with credential-stealing AI malware
Microsoft's official open-source packages have been compromised for the second time in recent weeks, with malicious code designed to steal credentials being injected into 73 packages. This code activates when developers…
-
AWS Lambda and Cognito secure shared API keys with per-user OAuth
This post details a method for securing API access by implementing per-user OAuth authentication in front of shared-key services. It addresses the security gap where shared API keys lead to a loss of individual accounta…
-
AI agent spending needs pre-call budget enforcement
A new approach is needed to govern spending on AI agents, as current token counters and observability tools are insufficient. The proposed solution involves implementing a pre-call budget enforcement system, similar to …
-
AI agents need multi-user auth for enterprise deployment
Deploying AI agents in enterprise settings requires robust multi-user authentication and authorization protocols. The key principle is to treat every agent action as a delegated user access, not as the agent's own blank…
-
Secure your npm CI pipeline with 5 layers of defense
This article outlines a five-layer strategy to enhance the security of npm Continuous Integration (CI) pipelines, addressing the significant attack surface presented by frequent dependency installations. The proposed la…
-
AWS Bedrock AgentCore Identity enhances AI agent security on ECS
Amazon Bedrock AgentCore Identity now offers enhanced security for AI agents operating in production environments. This new capability, available as a standalone service, ensures that AI agents can securely access exter…
-
Cloudflare enables AI agents to create accounts, buy domains, and deploy code
Cloudflare has introduced a new protocol, co-developed with Stripe, that allows AI agents to autonomously create accounts, register domains, and deploy applications. This system enables agents to perform all necessary s…