Raj is Co-Founder and CEO of Unbound AI, a YC-backed (S24) company building the AI Agent Security Broker (AASB) for enterprises deploying AI coding agents like Claude Code, Cursor, Copilot, and Codex. Before founding Unbound AI in 2024, he led cloud data security at Palo Alto Networks, where he owned DLP and CASB features protecting sensitive assets across SaaS applications. Earlier, as Senior Product Manager at Imperva, he launched the company’s serverless security offering from concept to MVP. Raj is a Venture Partner at Pioneer Fund, a member of the Forbes Technology Council, and holds a graduate degree from MIT Sloan, where his research on DevOps in product-service systems was published at the International Conference on Engineering Design (ICED 2019). Unbound AI raised $4M in seed funding led by Race Capital in 2025.
Articles by Raj
Prompt Injection in Coding Agents: Every Attack, Every Defense
Every prompt injection vector specific to AI coding agents, with proof-of-concept patterns, detection signals, and defensive controls. Why action policy beats detection.
Top MCP Server Risks in Production: A Red Team Walkthrough
Three MCP exploit chains end to end: tool poisoning, exfil chain, and confused deputy. Detection telemetry, controls, and AASB mapping for each.
Every Known MCP Attack Pattern, Mapped: A Defender's Taxonomy
The five attack classes targeting AI coding agents through Model Context Protocol servers. Preconditions, mechanism, detection signal, and the controls that stop each one.
Governing Claude Across Web, Desktop, and Code: What Security Teams Need to Know
Claude operates across web, desktop, CLI, and Cowork surfaces. Each has a different risk profile. Learn how to govern Claude usage consistently across your organization.
AASB Buyer's Guide: How to Evaluate Agent Access Security Platforms
How to evaluate Agent Access Security Broker platforms. Covers must-have capabilities, vendor questions, scoring framework, and red flags to watch for.
What is an Agent Access Security Broker (AASB)?
An Agent Access Security Broker (AASB) governs how AI coding agents access tools, data, and infrastructure. Learn how AASBs work, why CASBs fall short, and what to evaluate.
Shadow AI Coding Agents: The Security Risk Your Engineering Team Isn't Talking About
Shadow AI coding agents are running in your development environment without security approval. Learn how to detect them, assess the risk, and build governance that scales.
Securing Cursor, Codex, and Claude Code: A Comparison of AI Coding Agent Risks
Compare the security architectures and risk profiles of Cursor, Codex, and Claude Code. Understand what each tool accesses and how to govern them with one policy engine.
The AI Coding Agent and AASB Glossary
Definitions for the new control layer between AI coding agents and your enterprise. Covers AASB, MCP, agent mode, auto-approve, prompt injection, tool poisoning, and more.
What Happens When an AI Coding Agent Goes Rogue: Real-World Incident Scenarios
Four realistic scenarios showing how AI coding agents can leak credentials, exfiltrate data, and compromise infrastructure. Each maps to a documented 2025 incident and a prevention path.
AI Coding Agent Security for Financial Services: Compliance Requirements and Controls
AI coding agents in financial services create regulatory exposure under OCC, FFIEC, SEC, and NY DFS guidance. Here are the specific risks and required controls.
AASB vs. CASB: Why AI Coding Agents Need a New Security Category
Cloud Access Security Brokers were built for human access to SaaS. AI coding agents introduced a different problem: software that can read, write, execute, connect, and act. That shift requires a new control layer.
The CISO's Guide to AI Coding Agent Risk
A practical framework for CISOs managing AI coding agent risk. Covers the five risk categories, where existing tools fall short, and how to build a governance program.
The State of AI Coding Agent Risk
A comprehensive analysis of the security, compliance, and operational risks enterprises face as AI coding agents become the default developer interface — mapped to the OWASP Top 10 for Agentic Applications.
AWS Kiro Didn't Just Delete an Environment. It Exposed the Missing Control Plane for AI Coding Agents.
A reported December 2025 AWS incident involving the Kiro AI coding agent turned a small software fix into a 13-hour outage. The strategic lesson: enterprises need a dedicated governance layer between AI coding agents and the systems they can change.
How Unbound AASB Addresses Key OWASP Risks for Agentic Applications
AI coding agents change the security question from model usage to live access governance. Here's how Unbound's Agent Access Security Broker maps to the five highest-impact OWASP agentic risks.
How to Govern AI Coding Agents Without Killing Productivity
You do not need to choose between speed and control. The right governance model lets developers keep the AI coding tools that make them faster while applying discovery, posture checks, runtime controls, and approvals to the actions that create enterprise risk.
Your Team Adopted Cursor. Do You Know Which MCP Servers It Can Reach?
MCP servers give AI coding agents access to databases, APIs, and infrastructure. Most security teams have no idea they exist.