David Faugno
44 posts
We now have de facto AI regulation. It’s not obvious why from here on out models that have certain levels of capability or are trained on certain compute sizes won’t have to be reviewed by the government before release.
Realistically, as AI models became more and more powerful this was going to be inevitable (I think it’s too early, but here we are). So now it’s mostly just interesting to think about the implications and scenarios from here. A few would be:
* America gets to control who gets access to frontier intelligence and when. This generally works as long as we remain at the frontier at all times and don’t have a risk of being surpassed. At the moment we have a clear lead in frontier intelligence so this is a good bet, but lots of motivated parties would love to change that.
* This likely creates backlog of AI releases which means that we will see less rapid fire back and forth jumps in model progress. Bull/fine case is that we just get bigger step functions per release at a slower rate and we end up at the same point we would have. Bear case is those incremental smaller jumps were necessary for the continued flywheel of innovation.
* Other countries likely have even more incentive to at least hedge their bets with sovereign AI strategies so aren’t dependent on access to US AI all times. Previously this was relatively moot because the alternative wasn’t good enough, but that could change out of necessity and what we’re seeing in China.
* Open weights obviously a big winner here as it becomes what likely sovereign AI gets built out on, and what (for now) can still be released to the market without the same controls. One interesting question would be how regulation eventually extends to open models, which would have its own set of long term consequences.
Anyway some big updates to everyone’s mental models of AI regulation as a result of the capabilities we’re now seeing in AI. Wild times.
Stephanie Palazzolo@steph_palazzolo
New w/ @leomschwartz @amir: The Trump admin has asked OpenAI to stagger the release of GPT-5.6 over security concerns. On Thursday, CEO Sam Altman told staff that the government will be approving access to GPT-5.6 customer by customer, a highly unusual approach.
English
Llevo un tiempo buscando mejores formas de ocultar mis secrets en mi máquina local, y estos días por fin me he puesto a ello.
Tener ficheros por ahí sueltos con las claves en claro me parece de todo menos seguro. Los agentes pueden leerlos sin querer, y con ello enviar toda nuestra información a servidores externos, donde a saber luego qué ocurre.
Dándole vueltas a una buena solución simplicidad / beneficio, acabé decantándome por usar 1Password, que ya lo utilizo para mi día a día.
Aquí te cuento cómo lo he hecho. Hay soluciones más robustas, aunque también complican más la ejecución, especialmente en remoto.
¡Dicho esto, cualquier idea es bienvenida! Os comparto la mía por si os sirve
Antonio Leiva@antonioleivag
Español
David Faugno retweeted
Agents are starting to act across real systems. The missing layer is identity, access, and accountability.
This Saturday, Keith Enright, Chief Strategy Officer at Harvey AI and former Google Chief Privacy Officer, and @dawnsongtweets, UC Berkeley professor and leading AI security researcher, will join us to share their perspectives on one of the most important problems in the agentic stack.
Apply to join. Come build with @1Password at AGI House: app.agihouse.org/events/agent-i…
English
@QuinnyPig @Bbonjour17 @EdTheOSINTer We continue to invest heavily in serving users both at home and at work. Give it a try!
English
@Bbonjour17 @EdTheOSINTer 1Password has largely sewn up the business space.
English
Depending how charitable you want to be, LastPass has been popped somewhere between 2-5 times. So far.
They are a password manager. How on earth do they have customers at this point?
Techmeme@Techmeme
LastPass notifies customers that their personal information and customer support case records were stolen during a hack at Canadian market research company Klue (@zackwhittaker / TechCrunch) (Visit Techmeme dot com for the link and full context!)
English
@jainarvind The context must be separate from the intelligence layer, but many will get stuck.
English
The core challenge in enterprise AI is how to rent the intelligence, but own the context. If you own the secure data plane that organizes your company’s knowledge graph, you keep control of your operational memory, and the freedom to use whichever model is best at a given moment, whether that's the fastest, cheapest, or most capable.
Ashwin Gopinath@ashwingop
Claude Tag is a Trojan horse. Not because Anthropic is doing anything evil. Because the incentives are obvious. Day one, this looks like a great feature: tag Claude in Slack, let it follow the thread, remember context, connect to tools, break down tasks, chase work, and act like a teammate. But that is exactly the problem. The moment your AI vendor becomes a shared coworker, it stops being just a model provider. It starts becoming the place where work is interpreted, remembered, routed, and eventually executed. That is not model lock-in. That is context lock-in. You are now renting your company back from them. Models can be swapped. Agents can be copied. But the memory of how your company actually works is much harder, maybe impossible, to move: the Slack scar tissue, the exception paths, the customer promises, the unfinished threads, the weird workflows, the implicit owners, the “we tried that in Q2 and it failed” knowledge. Once that lives inside one vendor’s agent layer, you are not renting intelligence anymore. You are renting your company’s operating memory. And the pricing model makes it even more dangerous. A human coworker has a salary. Claude has unbounded tokenized activity. The more work moves through it, the more the vendor captures not just IT spend, but labor spend. This is the enterprise bargain people will regret: Convenience now, and rapid decent into dependency. The right architecture is simple: rent the best intelligence from whoever is best this month. OpenAI, Anthropic, Gemini, open source, whatever. But own the context layer. Your company memory should be inspectable, permissioned, portable, and model-neutral. It should not be buried inside the same vendor that sells you the intelligence and the workflow surface. Claude Tag is useful. That is why it is dangerous. Rent the intelligence, but own the context. Or, regret later.
English
My thanks to 1Pass team. Some oddities to setup but once it was pointed out it was easy to find how to fix
They've actually implemented many features to help.
Lesson learned: don't troubleshoot and hold onto resentment for months. Troubleshoot regularly to see if it's fixed 🫡
David Faugno@1PasswordCEO
@bbaskin @1Password @bbaskin - settings/ security/ confirm my account password: 14 or 30 days
English
1Password has been named a Leader in the 2026 Gartner® Magic Quadrant™ for SaaS Management Platforms.
Accelerating AI and SaaS sprawl create ungoverned access that most IT and security teams can't track. 27% of employees use unsanctioned AI tools. That’s not a future risk. That’s an attack surface right now.
1Password SaaS Manager brings AI and SaaS discovery, access governance, and token spend optimization into one unified platform with 400+ integrations so that IT, security, and finance teams have a complete picture of every app in use and the access tied to it.
Full breakdown in the Gartner report here: bit.ly/4vXkJ9W
#GartnerMagicQuadrant #SaaSManagement #IdentitySecurity #1Password
English
Timberwolves free up significant salary with the remaining two years of Randle's deal, giving them more flexibility to retain Ayo Dosunmu and use exceptions. Nets acquire a three-time All-Star and two-time All-NBA forward in Randle into their cap space -- plus a first-rounder. Chicago uses part of its space on a talented athletic center, a position of need, with $30 million in room left.
Shams Charania@ShamsCharania
Just in: Minnesota is sending Julius Randle and the No. 28 pick in the NBA Draft to the Brooklyn Nets in a three-team trade that sends Nic Claxton to the Chicago Bulls, sources tell ESPN. The Timberwolves will acquire Brooklyn’s No. 33 pick for Randle and No. 28.
English
@ivanburazin Healthy mindset @ivanburazin. Happy for the success you are having.
English
I have turned down two acquisition offers without thinking twice. Either of them would have comfortably set me off for the rest of my life.
It's not that money doesn't matter. It's just not a primary motivation anymore. As long as there's food on the table and all the other necessities taken care of, I'm as happy as a man could get. I have been driving the same car for the last 5 years. Haven't bought a watch in ages either.
I've been around people with a shit ton of money and no game/purpose. Their lives seemed scarily empty.
Building something on a global scale is just more fun.
English
English
After years @1Password has worn me down. I'm typing main password at least once/day across multiple devices. On Android every other day for no reason
May end up migrating back to LastPass. Until then, I've given up and reduced my main password from 36 characters to 12
English
Your browser remembers your passwords. That's not the same as securing them.
Browser-saved credentials are one of the most common, and most overlooked, risks in your security stack.
See how to reduce risk and safeguard business credentials in this practical, on-demand Secure in 20 session: bit.ly/4aevpsD
#IdentitySecurity #Cybersecurity #1Password
English
Tip 💡: if you have @1Password installed, OpenRouter will detect it and help you save your API keys
English
English
Hugely underrated point. You basically state this, but to underscore it: for most knowledge work other than code, the digital output is often an intermediary step in the value creation process. Comparatively, for code automation, it's literally is the equivalent of automating on the production line in manufacturing.
But for most other areas of knowledge work, there's still a ton of real-world interaction for the ultimate value creation to occur. For a sales rep, automation gets them to the next stage in a sales cycle faster, but they still need to meet with the prospects and customers and have a compelling message and presence; in legal, the value is created only once the client and counterparty agree on deal terms after lots of back and forth; in life sciences, only when in real life medical trials and the drug works did the automation matter, etc.
The main implication here is just that diffusion will be different than many anticipate because they're looking at coding as the proxy. One huge positive point here is that it's one of the reasons we're not going to be in the doomer timeline.
English
A fundamental problem with extending Codex/Cowork/Code to all knowledge work is that they remain very "software-brained" where the end result (the software) is what is important & that code serves as a source of truth.
For a lot of other knowledge work, the process is at least as important as the outcome. This includes researching what is known, an exploration of alternatives, failed efforts, prototype branches, experiments, etc. All of those things are valuable, so you cannot use the PowerPoint at the end the way you can use a codebase, nor is progress on a to-do list sufficient context post compaction. You work in learning loops, refining your perspectives as you go.
In some ways, this makes long-running models like Fable hard to use for deep knowledge work, since they are designed to deliver product to you in the end. You can prompt your way around this problem, but everything about the Codex and Code harnesses want you to be a software developer and you have to fight them. There is a real disconnect between how a manager or analyst thinks about problems and how the agentic software tools approach solving them. Addressing this is critical to breaking out of the coding niche for these tools.
English
So grateful for my dad and the blessing to be a dad to my 5 kids.
“ Dad’s are most ordinary men turned by love into heroes, adventurers, storytellers, and singers of songs.” - Pam Brown
Happy Father’s Day!
#SundayThought
English
100%
1Password for Builders@1PasswordBuild
"Businesses are not gonna wait three years for the security team to figure out a clue of what to do." @travismcpeak, Head of Security @cursor_ai The access model most enterprises rely on wasn't built for non-deterministic AI agents. Episode 3 of Zero-Shot Learning unpacks why security urgently needs to catch up to the speed of AI adoption. 🔗 youtu.be/oV4k8Z4-4Aw #AISecurity #ZeroShotLearning #1Password
QST
David Faugno retweeted
1Password has been recognized as a Leader in the Gartner® Magic Quadrant™ for SaaS Management Platforms. This recognition is based on our Ability to Execute and Completeness of Vision. Complementary access to the report coming soon, learn more here: bit.ly/4eBozi5
#GartnerMQ #SaaSManagement #IdentitySecurity #1Password
English
"1Password has moved from acting on the periphery to being a core system of access and access governance for our customers." - David Faugno (@1PasswordCEO)
AI agents are changing how work gets done. They're also creating a new challenge for security teams. How do organizations govern access for identities that don't log in, don't follow traditional workflows, and can be spun up in seconds?
As David shared with ISMG, the future of access isn't just about securing credentials, it's about governing what every identity can do, for how long, and why. Full story: bit.ly/4vX6gea
#AccessGovernance #AI #IdentitySecurity #1Password
English
I appreciate the opportunity to speak with @NYSE after the opening bell this morning to share our excitement about what we are building, accelerated by our acquisition of Apono, as we unify access for humans, machines and agents and eliminate standing privilege.
David Faugno@1PasswordCEO
1Password CEO David Faugno Explains How Apono Acquisition Bolsters its Platform finance.yahoo.com/video/1passwor…
English