Efi Rand

Is your app powered by Next.js? Stop and check this. CVE-2026-44578 dropped this week. CVSS 8.6. WebSocket Upgrade SSRF, unauthenticated, self-hosted instances only. A crafted Upgrade header lets attackers reach internal services, cloud metadata, admin panels - anything your Next.js server can touch. This is what you inherit when your agent stack runs over HTTP and WebSockets. A2A, custom WS handlers, tool calls routed through Next.js endpoints - one CVE at the web tier and your whole agent pipeline is exposed. MQTT.Agent takes a different angle. Agents publish to claim-bound topics. The broker enforces who can write where before any app code runs. No URLs to forge. Different attack surface entirely. Specs have bugs too. This just removes a whole class of them from the equation. Check your version. If you're on an affected one, upgrade today. https://t.co/2hzFJFqJkA

Just published an open spec for security and connectivity in multi-agent systems: https://t.co/2hzFJFqJkA Orchestrated multi-agent systems are taking over. The debate is about which topology wins - nano claw, paperclip, claude agents. But the moment teams try to ship this to production, security blocks adoption. The problems stem from the near-unlimited autonomy agents get to act and talk to each other. They speak MCP and A2A to exchange data and invoke tools, but those protocols don't handle the critical parts: authentication, identity verification, integration with enterprise IdPs, recovery from network failures, offline tolerance, session resume. I got to this conclusion building CloudSignal - my real-time messaging platform built on MQTT. Customers started running multi-agent systems on top of it, and it became obvious that MQTT 5 already solves most of these problems. It was designed from day one for IoT at scale: millions of devices with per-device identity, broker-level ACLs, offline durability, session resume, QoS. The requirements coming out of agent systems map almost 1:1 to what MQTT was built for. The spec takes those primitives and adapts them to the agent world: • Per-agent identity via multi-provider JWT (Auth0, Clerk, Cognito, Keycloak, or bring your own) • Wire-level enforcement - agent-a cannot impersonate agent-b • Offline tolerance and task recovery in the transport • Tool calls (MCP) and agent-to-agent (A2A) on one wire • Working SDKs on npm, MIT, today • Broker-agnostic, spec is open (CC-BY-4.0) SDKs run against any compliant broker - Mosquitto, EMQX, HiveMQ, NanoMQ, self-host or managed. CloudSignal is one managed option with enterprise auth built in. If you're shipping multi-agent systems and hitting the security wall, take a look: https://t.co/2hzFJFqJkA Feedback welcome.