Blog

Product
May 21, 2026

Agent Registration with Auth.md

Introducing auth.md — an open protocol that lets agents register for your service.

Garrett Galow
Read more
Product
Mar 19, 2026

Pipes MCP: Session-scoped authorization for AI agents

Grant agents time-limited access to OAuth connections using Pipes and MCP.

Ryan Cooke
Mar 19, 2026
Product
Mar 18, 2026

Agent Experience: Build without leaving your terminal

Develop with WorkOS entirely from your terminal, with agent-ready tooling built in.

Nick Nisi
Mar 18, 2026
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Guides
Jun 3, 2026

Migrating identity providers without a flag day: A zero-downtime playbook

A four-phase playbook for moving off Auth0, Cognito, Clerk, or Firebase without a 2 AM incident.

Jun 3, 2026
Tutorials
Jun 3, 2026

How to implement RBAC authorization in Python APIs with WorkOS

Set up roles and permissions, verify session JWTs, and protect your FastAPI routes with dependency injection.

Maria Paktiti
Jun 3, 2026
Guides
Jun 3, 2026

Why AI agent audit logs are different from application logs

Your existing logging infrastructure is necessary but not sufficient. Here's what's missing and why it matters.

Maria Paktiti
Jun 3, 2026
Guides
Jun 2, 2026

The security risks specific to MCP servers, and how to address them

MCP servers have a different attack surface than traditional APIs. Here are the five risks that matter most, grounded in OWASP's agentic AI guidelines, with concrete mitigations for each.

Maria Paktiti
Jun 2, 2026
Guides
Jun 2, 2026

TanStack Start authorization and RBAC: A developer's guide for 2026

Your route guard does not protect your server functions. A complete guide to authorization in TanStack Start, from roles and permissions to enterprise RBAC and fine-grained access control.

Maria Paktiti
Jun 2, 2026
Guides
Jun 2, 2026

The building blocks of an AI agent

Tools, MCP servers, skills, orchestrators, and why auth runs through all of them.

Maria Paktiti
Jun 2, 2026
Culture
Jun 2, 2026

Key takeaways from Boris Cherny on building Claude Code

Key insights from Boris Cherny's Acquired Unplugged interview on building Claude Code, the death of traditional roles, and why the golden age of the generalist is here.

Noelle Festa
Jun 2, 2026
Culture
Jun 2, 2026

What Acquired's hosts learned from studying the greatest companies in history

Ben Gilbert and David Rosenthal shared what makes companies endure for generations at Acquired Unplugged, hosted by WorkOS CEO Michael Grinich.

Noelle Festa
Jun 2, 2026
News
May 29, 2026

WorkOS skills is in the Claude plugin marketplace

WorkOS skills are now in Claude's plugin marketplace. Here's what that means for how developers discover and adopt API tooling.

Maria Paktiti
May 29, 2026
Guides
May 28, 2026

Migrating auth at scale: What changes above 200K users

A practical guide to migrating auth at scale — the CLI workflow, transparent proxy approach for 15+ SSO connections, and webhook sequencing above 200K users.

Zac Burrage
May 28, 2026
News
May 28, 2026

auth.md — One week later: who's shipped, who's writing, what's next

A week after we shipped auth.md, developers have published spec-compliant files, partners have endorsed it, and the ecosystem is aligning.

Zack Proser
May 28, 2026
Tutorials
May 28, 2026

How to build a custom SDK generator with oagen

How to build a custom, language-aware SDK generator from an OpenAPI spec using oagen's typed intermediate representation.

Maria Paktiti
May 28, 2026
Guides
May 28, 2026

TanStack Start authentication: A developer's guide for 2026

Your beforeLoad guard does not protect your server functions. A complete guide to authentication in TanStack Start, from server functions and sessions to enterprise SSO.

Maria Paktiti
May 28, 2026
Guides
May 27, 2026

How to secure AI agent delegation and multi-agent communication

When Agent A delegates to Agent B, whose permissions apply? Whose audit trail records the action? And what happens when Agent B is compromised?

Maria Paktiti
May 27, 2026
Guides
May 27, 2026

Stainless alternatives: What to use now that the SDK generator is shutting down

Anthropic's acquisition of Stainless means the hosted SDK generator is going away. Here's what to reach for instead.

Maria Paktiti
May 27, 2026

No results found

Please try a different search

We’re hiring

Our global team is growing and we’re hiring all types of roles.

View open roles
About us

WorkOS builds developer tools for quickly adding enterprise features to applications.

Learn more