E195: Taking on the New AI Attack Surface With Manifold: Runtime, Skills & Supply Chains

The latest Open Source Startup Podcast episode has our co-hosts Robby and Tim in conversation with Neal Swaelens and Oleks Yaremchuk, 2 of the Co-Founders of runtime agent security company Manifold Security.

Manifold recently released Manifest, their open-access, graph-based supply chain intelligence tool for users to scan skills and plugins to uncover any potential supply chain risks.

In this episode, Neal and Oleks explain why AI agents are reshaping cybersecurity - shifting the focus from guardrails to runtime security.

As tools like Claude Code and Codex spread rapidly, companies often have little visibility into the agents, plugins, skills, and external assets employees are using, creating major supply chain and runtime risks.

Drawing on their experience building LLMGuard and leading security teams at Protect AI and Palo Alto Networks, they argue that runtime detection and response is still a wide-open market opportunity.

They also discuss what it takes to build in the crowded AI security space, where buyers now expect real products instead of roadmap promises.

The conversation highlights lessons from open projects like LLMGuard and Manifest, why reducing noise and false positives matters, and how open ecosystems can help establish trust and industry standards for securing AI agents and assets.