All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
Bluesky
Twitter
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Vercel Connect launches to replace long-lived API tokens with scoped, short-lived access for agents and apps

By

Hedi Zandi

3d ago· 13 min readen

Summary

Vercel Connect is a new service that allows apps and agents to access third-party services like Slack and GitHub without storing long-lived, dangerous provider tokens in environment variables. Instead, users register a connector once and request scoped, short-lived tokens at runtime. The article argues that current approaches using long-lived tokens shared across users are insecure, and that a vault doesn't solve the fundamental risk. Vercel Connect is now in Public Beta.

Source

bskyVercel Connect launches to replace long-lived API tokens with scoped, short-lived access for agents and appsvercel.com

Key quotes

· 4 pulled
Giving your agents access to your tools, data, and services is what makes them useful.
Today, agent access is usually granted through long-lived provider tokens stored in your environment variables, provisioned for everything your agent might need.
These tokens are shared across every user, never expire, and give your agent full reach across every task, no matter how small the job.
A vault makes that token harder to steal. It doesn't make it less dangerous.
Snippet from the RSS feed
Vercel Connect lets your apps and agents access Slack, GitHub, and other services without storing long-lived secrets. Register a connector once and request scoped, short-lived tokens at runtime. Now in Public Beta.

You might also wanna read

Vercel: Frontend Cloud Platform for Fast Web App Deployments with Next.js

Vercel is a frontend cloud platform and the creator of Next.js, offering fast deployment, Git integration, and preview environments for web

Product Hunt·10mo ago

Vercel Security Breach: OAuth Supply Chain Attack Exposes Platform Environment Variable Risks

A security breach at Vercel exposed how a compromised third-party OAuth application provided long-term access to internal systems, bypassing

trendmicro.com·2mo ago

Vercel: Developer Platform and Cloud Infrastructure for Web Applications

Vercel is a platform that offers developer tools and cloud infrastructure for building, scaling, and securing web applications, with a focus

Product Hunt·1y ago

Vercel: Developer Tools and Cloud Infrastructure for a Faster Web

Vercel, the creators of Next.js, offers developer tools and cloud infrastructure to build, scale, and secure a faster, more personalized web

Product Hunt·10mo ago

Vercel: Developer Tools and Cloud Infrastructure for Web Development

The article highlights Vercel, a platform offering developer tools and cloud infrastructure to enhance web development, focusing on speed an

Product Hunt·10mo ago

Vercel Discloses Security Breach as Hackers Claim to Sell Stolen Data

Cloud development platform Vercel has disclosed a security breach after threat actors claimed to have compromised its systems and are attemp

bleepingcomputer.com·2mo ago