I'm a 19-year-old mechanical engineering student. My cofounder is a 19-year-old AI student. Two months ago we started building infrastructure for something nobody had solved yet. Here's the problem we kept running into while building AI agent systems: Every agent we looked at had unrestricted access to everything it touched. No spend limits. No time boundaries. No way to prove what it was actually authorized to do. No instant kill switch. You give it an API key and hope for the best. This isn't a hypothetical risk. An account on X asked Grok to translate a Morse code message. The translated message said "WITHDRAW ALL WETH." A connected payment bot executed it immediately — no questions, no verification, no boundary between receiving an instruction and acting on it with real money. The attacker returned the funds. The next one won't. The core problem The internet was built for humans. OAuth assumed a human consciously granting permissions. API keys assumed a human operator who could intervene.…