All posts
June 22, 20263 min read

Protecting Devin from Standing Access

Many teams believe that granting a permanent credential to a developer is the easiest way to keep productivity high. In reality, that standing access creates a hidden attack surface that can be exploited long after the original need has passed. Why standing access is risky Standing access means a user, service account, or automation token retains the same privileges for weeks or months. The longer a credential lives, the more opportunities an attacker has to harvest it, through phishing, malw

Free White Paper

Standing Privileges Elimination: The Complete Guide

Architecture patterns, implementation strategies, and security best practices. Delivered to your inbox.

Free. No spam. Unsubscribe anytime.
Coleman Nye

Many teams believe that granting a permanent credential to a developer is the easiest way to keep productivity high. In reality, that standing access creates a hidden attack surface that can be exploited long after the original need has passed.

Why standing access is risky

Standing access means a user, service account, or automation token retains the same privileges for weeks or months. The longer a credential lives, the more opportunities an attacker has to harvest it, through phishing, malware, or insider misuse. Because the permission set rarely changes, the credential can be used to reach systems that were never intended for that user. Over time, the organization loses visibility into who is actually using the access and for what purpose.

What to watch for

  • Broad scopes that never shrink. If a credential can read or write across multiple databases, clusters, or servers, any compromise instantly expands the blast radius.
  • Credentials that are shared. When a password or key is copied between teammates, accountability disappears and audit trails become impossible to attribute.
  • Absence of session records. Without a replayable log, it is hard to answer questions such as “who ran this destructive command?” or “what data was exfiltrated?”
  • No real‑time data protection. Sensitive fields, API keys, personal identifiers, or credit‑card numbers, are often returned in clear text and can be captured by any downstream observer.
  • Missing approval workflow. Critical operations (e.g., dropping a production table) should be reviewed before execution, but standing access lets them run unchecked.

These patterns are symptoms of a system that relies solely on initial identity verification (the setup) and then hands the request directly to the target resource. The setup decides who may start a connection, but it does not enforce any guardrails once the traffic leaves the identity provider.

How hoop.dev changes the equation

hoop.dev inserts a Layer 7 gateway between the identity provider and the infrastructure. The gateway becomes the only place where enforcement can happen. Because every request passes through hoop.dev, it can apply just‑in‑time (JIT) approval, block dangerous commands, mask sensitive response fields, and record the entire session for replay.

When Devin initiates a connection, hoop.dev validates his OIDC token, extracts his group membership, and then decides whether to allow the request. If the operation matches a policy that requires human sign‑off, hoop.dev routes the request to an approver before it reaches the database. If a command attempts to drop a table, hoop.dev can block it outright. Every byte that flows through the gateway is logged, creating an audit trail that ties each action back to Devin’s identity.

Continue reading? Get the full guide.

Standing Privileges Elimination: Architecture Patterns & Best Practices

Free. No spam. Unsubscribe anytime.

Because the credential used to talk to the backend lives only inside hoop.dev, Devin never sees it. This eliminates the risk of credential leakage through local copies or shared files. The gateway also masks fields like passwords or personally identifiable information in real time, ensuring that downstream tools or logs never expose them.

All of these enforcement outcomes, such as JIT approval, command blocking, inline masking, and session recording, exist only because hoop.dev sits in the data path. If the gateway were removed, the setup alone would still allow Devin to connect with standing access, and none of the protective measures would be applied.

Getting started

To replace standing access with a controlled, auditable flow, start with hoop.dev’s getting‑started guide. Deploy the gateway, register your resources, and configure OIDC authentication. The documentation walks through connecting databases, SSH, and Kubernetes without changing existing client tools.

For deeper insight into masking, approval workflows, and session replay, explore the learn section. The open‑source repository on GitHub provides the full codebase and contribution guidelines.

FAQ

  • Does hoop.dev eliminate the need for IAM policies? No. IAM or cloud‑native policies still decide who can request a token. hoop.dev builds on that decision and enforces additional guardrails at the gateway.
  • Can existing tooling keep using psql, kubectl, or ssh? Yes. hoop.dev works at the protocol level, so standard clients continue to function without modification.
  • What happens to credentials? They are stored only inside the gateway. Users and agents never receive them, preventing accidental sharing.

By moving enforcement to the data path, organizations can retire standing access and replace it with a transparent, auditable, and least‑privilege model.

Explore the source code and contribute on GitHub.

Open source

Save the open-source gateway for agent data access

Hoop is MIT-licensed infrastructure for controlling how AI agents reach production data. Star hoophq/hoop so you can inspect it, deploy it, or share it when your team starts governing agent access.

Star and save the repo →More posts
Ask AI about this topic
ClaudeChatGPTGrokGeminiPerplexityCopilot