Security & Identity is one of the densest verticals on apis.io — 378 providers across 2,323 APIs — and in 2026 it’s also one of the most unsettled, because the thing being secured changed. The question used to be “is this the right person?” Increasingly it’s “is this the right agent, acting for whom, with what scope?” This is post three in our week walking the hottest six industries on apis.io.
The bands
| Band | What it does | Providers on apis.io |
|---|---|---|
| Identity & access | AuthN, AuthZ, CIAM, SSO | Auth0 (6 APIs), Stytch (3), WorkOS, Ory (4), FusionAuth |
| Cloud & app security | Posture, scanning, runtime defense | Palo Alto Networks (51), Snyk (14), Aqua Security, Rapid7 |
| AI-native security | Screen LLM/agent traffic | Lakera AI (2) |
| Identity verification | KYC, fraud, watchlist | Trulioo (7) |
Palo Alto’s 51 APIs span PAN-OS, Prisma Cloud, Cortex, and — tellingly — Prisma AIRS, an AI Runtime Security surface that didn’t exist as a product line a couple of years ago.
What’s shifted in 2026
- Agent identity is now a first-class surface. Auth0’s catalog entry lists an explicit “Auth0 for AI Agents” API alongside its Management and Authentication APIs. Non-human identity — token exchange, delegated scope, machine-to-machine grants for agents — is being partitioned out from human auth rather than overloaded onto it.
- The AI firewall is a real category. Lakera AI ships Guard and Platform APIs aimed squarely at prompt injection, jailbreaks, and data exfiltration. Palo Alto’s Prisma AIRS targets the same class of LLM-native threat. These aren’t WAF features bolted on — they’re a distinct layer.
- Supply-chain scanners went MCP-native. Trivy, Snyk’s SBOM and container APIs, and Rapid7’s bulk-export surface now expose MCP servers, so an agent can orchestrate scan-and-remediate at ingest time instead of after a human reads the report.
Where to start
- The Security & Identity industry page — the full cohort.
- Identity & Access category and Security category — the canonical filtered lists.
- The MCP server catalog — scanners and identity platforms publishing agent surfaces.
- Agent skills — runnable skills for Cerbos (authorization), FusionAuth, and Fortify.
The takeaway
Security and identity are where agents stop being a convenience and start being a governance problem. The catalog is useful here precisely because it lets you see the seam: which providers still model only human identity, and which have already split out an agent surface. In 2026 that distinction is the buying decision. Read the identity band by capability, and check whether your verification and scanning vendors have shipped MCP yet — because your agents will need to call them.