Pore

Let agents in. Keep control.

Give AI agents exactly the access they need. Nothing more. Pore is a Zanzibar-style authorization service built for the era of autonomous agents.

Start free Read the docs

What it is in 30 seconds

Relationship-based access

Model who can do what as a graph of relationships between subjects and objects. No brittle role matrices, no per-endpoint conditionals.

Built for agents

Agents get first-class identities, scoped tokens, and revocations that take effect in milliseconds — not stale cached JWTs.

How Pore differs

Multi-tenant from day one. Usage-metered. Deployed to the edge globally. You get authorization as a managed service, not a library to operate.

See it in action

Define a namespace, grant an agent access, revoke it, check from the SDK — in under a minute. (Demo video coming soon.)

[ Product demo placeholder ]

Three calls, done

check, grant, revoke. That is the hot path. Everything else is tooling around those three. 

import { Pore } from "@pore/sdk";

const pore = new Pore({ apiKey: process.env.PORE_KEY });

// Can this agent read the Q4 revenue report?
const { allowed } = await pore.check({
  subject: "agent:assistant-9f3",
  relation: "viewer",
  object: "doc:q4-revenue-2026",
});

// Grant it.
await pore.grant({
  subject: "agent:assistant-9f3",
  relation: "viewer",
  object: "doc:q4-revenue-2026",
});

// Revoke it.
await pore.revoke({
  subject: "agent:assistant-9f3",
  relation: "viewer",
  object: "doc:q4-revenue-2026",
});

Who it's for

Platform engineers

Ship an authorization layer in an afternoon that would otherwise take a quarter to build and years to operate.

AI product teams

Give each agent its own identity and scoped permissions. Revoke instantly when an agent misbehaves.

Compliance leads

Every check is audited. Every grant is attributed. Per-tenant isolation is enforced by the schema, not by convention.

Why Pore, not something else

vs. SpiceDB

SpiceDB is excellent if you want to run authorization yourself. Pore is managed, multi-tenant, and priced per-check so you don't.

vs. Oso

Oso focuses on policy-as-code at the application layer. Pore is graph-based like Google Zanzibar, optimized for cross-service consistency.

vs. homegrown

Your team should ship product, not maintain a permissions service. Pore is what you'd build if authorization were your full-time job.

Trusted by teams building the next generation of AI products

[ Logos, quotes, and case studies land here at launch. ]

Simple pricing

Free
$0
  • 100k checks / mo
  • Community support
Starter
$49
  • 1M checks / mo
  • Email support
Pro
$299
  • 10M checks / mo
  • SSO, SLA
Enterprise
Talk to us
  • Unlimited checks
  • Dedicated region

See full pricing →

Ship authorization today.

Free tier, no credit card. Upgrade when you need to.

Start free Read the docs