Articles

Guides and insights on secure AI agent workflows and data handoffs.

Security & Privacy2026-04-23

How to Pass Tokens Between AI Agents Without Writing Them Into Your Workflow State

A step-by-step procedure for removing credentials, OAuth tokens, and PII from LangGraph and CrewAI workflow state at agent handoff points, using temporary claim URLs instead.

Read article

Security & Privacy2026-04-20

How to Pass Credentials Between LangGraph Agents Without Leaving Them in Your Message Queue

If your LangGraph workflow passes OAuth tokens or API keys through a message queue, those credentials are sitting unencrypted with no TTL and no revocation path. Here's how to fix it.

Read article

Security & Privacy2026-04-18

Secure Payload Transfer Between Agents Is a Solved Problem You're Still Solving Manually

Your LangGraph workflow passes an OAuth token from the auth step to the API caller step via a shared Redis key. The key has no expiry set. You meant to add that.

Patterns & Architecture2026-04-18

AI Agent Data Handoff Is Broken by Default

When one agent hands a database credential to the next agent in your pipeline, where does that credential live? In the message. In the queue. In the log your orchestration framework wrote automatically.

More articles