For decades, identity systems were designed for people logging into apps. But the next wave belongs to AI agents—autonomous or user-driven software that can invoke APIs, complete tasks, and disappear just as quickly. This shift is forcing a rethink of how businesses verify and control access.
To meet that challenge, Scalekit has launched an authentication stack purpose-built for agentic applications, while also announcing a $5.5 million seed round led by Together Fund and Z47, with angel investors including Adam Frankl, Oliver Jay, and Jagadeesh Kunda.
The timing reflects a looming security gap. Gartner predicts that by 2028, a quarter of enterprise breaches will trace back to compromised AI agents. Today’s login flows—where humans click in and out of browsers—don’t work when agents spin up, finish a task, and vanish. Developers often end up over-privileging agents or hacking together fragile workarounds.
“For years, software focused on blocking bots. Now business apps must let authenticated agents in and decide exactly what data they can read or write,” said Satya Devarakonda, co-founder and CEO. “Scalekit sits at that intersection of verifying every agent’s identity and enforcing precise, least-privilege access through a single drop-in toolkit.”
Backers say Scalekit has built the missing layer of infrastructure. “AI agents are emerging as first-class users of business software, and current identity stacks can’t keep up,” said Girish Mathrubootham, Founding Partner at Together Fund. “Scalekit spotted the shift early and built the missing agent identity infrastructure. We believe that foundation will power the next billion agent identities.”
Scalekit’s stack secures both sides of agentic workflows: authentication for Model Context Protocol (MCP) servers and outbound agent actions across third-party tools. Developers can spin up an OAuth 2.1 authorization server in minutes, or use Scalekit’s encrypted token vault and tool-calling layer to let agents act in Gmail, Slack, HubSpot, or Notion—without building custom token handling.
Ravi Madabhushi, co-founder and CTO, added: “After scaling auth for 50,000 businesses at Freshworks, we saw the next challenge coming: agent identities that live in code, not in user directories. Scalekit delivers short-lived scoped tokens and plug-in tooling that make agentic workflows secure.”
The company’s approach is modular: teams can adopt only the pieces they need. Scalekit supports passwordless login, magic links, two-factor OTPs, SSO, and machine-to-machine tokens, along with user-to-agent delegated consent and step-up approvals.
“Scalekit lets developers adopt only what they need with no forklift migration required,” said Pranay Desai, Managing Director, Z47. “That modular model, paired with lightweight implementation, is why teams building agentic workflows are standardizing on Scalekit.”
Early adopters include Fello, Sifthub, Napkin, Unstract, Hubbl, and Aerchain. “We needed auth that just works so we could focus on our core AI features. Scalekit eliminated months of auth complexity and let us ship in a couple of weeks,” said Harsh Vakharia, Head of Technology at SiftHub. “We plugged in Scalekit’s passwordless auth module without any refactoring,” added Suman Varanasi, CTO at Fello.
Looking ahead, Scalekit plans to expand its roadmap with support for background agents, deeper tool integrations, granular authentication logs, and prebuilt connectors for more than 1,000 apps.