The find out stage of AI is just supply chain and password protection

Summary of The find out stage of AI is just supply chain and password protection

by The Stack Overflow Podcast

30mMay 29, 2026
Listen to Episode

Overview of The Stack Overflow Podcast episode

This episode explores how AI agents are moving from novelty to practical enterprise infrastructure, with a strong emphasis on the “boring” but valuable use cases: back-office automation, data processing, supply chain workflows, risk analysis, and regulated operations. The first conversation, with Florian Douetteau of Dataiku, focuses on how agents are changing data foundations, orchestration, and governance. The second, with Nancy Wang of 1Password, zooms in on the identity, access control, and security problems that arise when agents act like humans at machine speed.

Enterprise agents are moving from hype to real workflows

What’s changed in the last year

  • Agents have gone from experimental demos to production use in many customers’ environments.
  • The most valuable applications are often not flashy consumer assistants, but expert back-office systems.
  • Examples discussed include:
    • supply chain optimization
    • manufacturing production planning
    • credit risk assessment
    • clinical trial acceleration
    • sales automation and CRM updates
    • patent application workflows

Main takeaway

The real business value is in repetitive, high-stakes, domain-specific tasks where reliability matters more than novelty.

Data infrastructure has to evolve for agents

Why agentic AI needs better data foundations

  • Agents depend heavily on data quality, documentation, and reusable data products.
  • Teams are increasingly building:
    • semantic layers over datasets
    • structured documentation for data products
    • ways to handle unstructured data more reliably
    • open table/storage formats such as Iceberg
  • The old idea that an agent can just “connect to everything” and magically work is proving insufficient.

Practical implication

For serious enterprise use, you need:

  • clear data foundations
  • consistent governance
  • controlled orchestration
  • a use-case-specific architecture rather than a generic prompt-and-pray setup

Security and governance are now central to agent design

The core problem

Agents need access to data to be useful, but the market still lacks a complete end-to-end trust model for:

  • identity
  • authorization
  • provenance
  • delegation
  • accountability

What companies are doing today

  • Replicating existing human access controls for agent workflows
  • Building intentional security layers around each agentic application
  • Treating agent permissions as task-specific, not permanent

Key distinction

A low-risk agent that summarizes information is very different from an agent that can:

  • move money
  • update regulated systems
  • access patient or clinical data
  • trigger manufacturing or supply chain actions

Nancy Wang on agent identity and access control

Why traditional identity systems are not enough

  • Human identity systems were built for:
    • slow provisioning
    • durable accounts
    • organization-centric access
  • Agents are different:
    • ephemeral
    • created in milliseconds
    • potentially numerous
    • often operating as swarms

Provenance matters

1Password’s framing is that you need to know:

  • which human delegated the task
  • which device or session spawned the agent
  • what authority the agent was created under
  • what purpose it was meant to serve

This “birthright” or provenance of an agent should determine its permissions.

Zero trust for agents

The episode argues that zero trust now needs to apply to:

  • human-to-agent delegation
  • agent-to-system access
  • agent-to-data access

And the new model should be:

  • just in time
  • just for task
  • no standing privilege

Granular permissions beat broad access

Single-agent vs multi-agent systems

Both patterns will exist:

  • Single-agent workflows for simpler, well-bounded tasks
  • Multi-agent or swarm architectures for complex enterprise processes

Why smaller scoped agents help

  • Easier to test
  • Easier to parallelize
  • Easier to localize blast radius
  • Better for complex workflows like ERP, procurement, engineering, and security review

Hallucinations and failure modes are real in serious systems

The warning

For high-stakes use cases, hallucinations cannot be ignored.

The solution

Success depends on three dimensions:

1. People

  • What human skills is the agent replacing?
  • Who does the agent collaborate with?

2. Orchestration

  • What systems does the agent interact with?
  • What decision process or workflow does it follow?

3. Governance

  • How risky is the task?
  • What regulated or financial harm could occur if it fails?

Security examples from the 1Password segment

Real-world risks

  • An agent nearly routed money to the wrong account, but MFA stopped it.
  • That example shows why access controls still matter even when agents improve productivity.

Just-in-time credential delivery

1Password described workflows where credentials are not exposed in plain text, but are:

  • injected only when needed
  • limited to a specific browser session or task
  • approved by a human when necessary

Future direction

The episode points toward new authentication standards for agents, including agent-aware identity protocols and cryptographic verification of delegated authority.

Hybrid deployment and on-prem security remain important

Why cloud-only is not always enough

The guests noted that many enterprises want or need:

  • hybrid infrastructure
  • on-prem deployments
  • local model execution
  • secure environments for sensitive IP and regulated data

Especially important for

  • manufacturing
  • pharma
  • chemicals
  • finance
  • any environment with elevated cyber or IP theft risk

What the hosts think is coming next

Likely future trends

  • More specialization in agents
    • front-office agents
    • expert back-office agents
  • More asynchronous workflows
  • Agents working continuously in the background
  • Humans reviewing, challenging, and approving outputs later rather than doing all work live

Broader shift

Work may increasingly become:

  • checking what agents completed overnight
  • validating and redirecting their output
  • focusing human effort on judgment and oversight rather than routine execution

Recommended takeaways

  • Treat agents as enterprise systems, not just prompts with tools.
  • Build data products and semantic layers that agents can actually use.
  • Use federated access across live systems and data warehouses.
  • Design permissions around specific tasks, not broad standing access.
  • Assume identity, provenance, and auditability are first-class requirements.
  • For high-risk workflows, keep humans in the loop and enforce MFA or equivalent controls.
  • Expect the next wave of AI discussion to focus on specialization, governance, and secure execution rather than generic chatbots.