Insecure Agents is a podcast that curates the most important conversations and trends in AI security. AI engineers, CISOs, and security practitioners listen to learn how to give their agents the security they need to reach higher levels of capability and autonomy.

Allie Howe

ALLIE HOWE HOST

Allie Howe is a Member of Technical Staff at Keycard and has a background in security engineering. She is a core contributor to the OWASP Agentic Security Initiative and has spoken at AI Engineer World's Fair and AI Agent Security Summit.

𝕏 @vtahowe in /allisonhowe

Back to episodes
Derek Meegan — Software Engineer at Browserbase
#40 Jun 26

Episode 40 · Jun 26

One Harness, Zero Standing Secrets: Derek Meegan (Browserbase) on Building bb

Derek Meegan · Software Engineer at Browserbase

--:--

We sit down with Derek Meegan, a software engineer at Browserbase and the lead behind their internal AI agent bb, to dig into how a well-built harness, not more model autonomy, is what makes agents safe to scale. Derek explains how bb reached 100% feature-request coverage with zero human effort and answers 99% of support first responses in under 24 hours, all while staying verifiably secure. We get into bb's security architecture: code mode sandboxing, just-in-time credential brokering through an integration proxy so there are no standing secrets, least-privilege tools, and per-invocation permissions. Derek's thesis is that agents should eliminate repetitive, well-understood work while the harness around them enforces the guarantees, and we talk through what that looks like in practice.

Listen on