Jens Ernstberger

Why runtime authorization for AI agents should evaluate action safety instead of trying to verify intent, with layered controls for unsafe tool use.

Kontext gives your AI agents proper identity, scoped access, and audit trails. So they work in production, not just in demos. One SDK. One line. This starts at kontext.require().

A security engineering breakdown of OpenClaw's three critical failure modes: unauthenticated access, credential sprawl, and prompt injection. System model and threat model analysis with practical fixes.

How to replace static API keys with OAuth 2.0 for MCP agents using scoped tokens, Dynamic Client Registration, delegation, and federation.

Agents read untrusted content and turn it into actions. Sanitize → detect → enforce at tool boundaries to make that speed survivable.

The next great leap in the digital age isn't just about ownership—it's about intelligent delegation. Explore how autonomous agents can amplify our capabilities while maintaining our sovereignty.

Learn how to fix the TanStack supply chain attack with clean version pins, credential rotation, package release cooldowns, split publish workflows, and runtime authorization.

Learn how to enforce least privilege for AI agents using external tools with runtime authorization, scoped credentials, MCP gateways, Kontext CLI, and audit trails.