Breaking
Arcade.dev raises $60M Series A led by SYN Ventures Total funding reaches $72M MCP authorization spec authored by Arcade adopted by Anthropic 8,000+ agent-optimized tools in the catalog Tool call volume up 25x in six months In production at some of the world's largest banks Arcade.dev raises $60M Series A led by SYN Ventures Total funding reaches $72M MCP authorization spec authored by Arcade adopted by Anthropic 8,000+ agent-optimized tools in the catalog Tool call volume up 25x in six months In production at some of the world's largest banks
Company Dossier // AI Infrastructure // San Francisco

Arcade.dev

The secure action layer for production AI agents - proving which agent took which action, on behalf of which user.

FOUNDED 2024 · SERIES A · 8,000+ TOOLS · $72M RAISED
Arcade.dev
Arcade.dev, San Francisco. The startup that decided the hard part of AI agents was never the model - it was permission.
$72M
Total Raised
8,000+
Agent Tools
25x
Tool Calls / 6mo
2024
Founded
The Story

The plumbing beneath the AI agent boom

Everyone is shipping agents. Almost nobody can prove what those agents did.
◆ ◆ ◆

Arcade.dev sells something unglamorous and, for the enterprise, non-negotiable: the ability for an AI agent to take a real action inside a real business system - and for someone, later, to prove exactly what happened. Send the email. File the ticket. Update the record in Salesforce. Then answer the audit question that follows: which agent did that, on behalf of which user, on which resource?

The company, based in San Francisco and founded in 2024, calls itself the "secure action layer" for production AI agents. Its platform handles the parts developers dread - OAuth flows, token storage, permission checks, tool execution and audit logging - across a catalog of more than 8,000 agent-optimized tools spanning Gmail, Slack, GitHub, Salesforce, X and Google Workspace.

Co-founder and CEO Alex Salazar frames the problem bluntly. "Agents don't fail in production because the model is wrong," he has said. "They fail because nobody can prove that for any given action by an agent, whether that agent on behalf of that user can perform that action on that resource." It is a distinctly un-magical way to describe AI - and that is the point.

Arcade did not start here. The team initially set out to build agents, decided, in Salazar's words, that "most agents suck - they don't do much," and pivoted to the infrastructure underneath them. In June 2026 that bet was validated with a $60 million Series A, bringing total funding to $72 million.

"Agents don't fail in production because the model is wrong. They fail because nobody can prove which agent did what, for which user."
— Alex Salazar, Co-founder & CEO
What It Does

Enforce. Execute. Govern.

Three jobs that stand between a demo and a deployment.
01

Enforce

Checks permissions before an agent acts - integrating with existing identity providers like Okta, Microsoft Entra and SailPoint so agents inherit the same scoped access as the humans they work for.

02

Execute

Runs the tool call reliably through a single secure gateway. OAuth tokens are encrypted and salted before storage, so the language model never touches raw credentials.

03

Govern

Logs every action an agent takes, producing the audit trail regulated enterprises need to answer who-did-what after the fact.

The Problem & The Difference

Why build it yourself when the plumbing is the same every time?

THE PROBLEM IT SOLVES

Agents that can't safely reach private data

Most agents fail because they lack authorized access to the private systems needed to do real work - or teams grant that access unsafely, letting models hold raw credentials and widening the attack surface. Arcade gives agents delegated, per-user authorization without exposing secrets to the LLM, and removes the manual work of updating permissions by hand.

HOW IT'S DIFFERENT

It wrote the standard, then made it framework agnostic

Arcade authored the MCP (Model Context Protocol) authorization specification - adopted by Anthropic - and stayed framework agnostic. Its runtime plugs into LangChain, LangGraph, LlamaIndex, CrewAI, Mastra, Google ADK and OpenAI Agents. Alternatives mean building bespoke auth in-house or stitching together integration platforms; Arcade ships 8,000+ tools with authorization built in.

The Founders

Identity people, solving an identity problem

The hard part of agents looks a lot like the auth problems this team already solved once.
Alex Salazar
Co-founder & CEO

Founded authentication startup Stormpath and sold it to Okta in 2017, then spent years there as a VP building identity products. Now applying that playbook to the authorization of AI agents.

Sam Partee
Co-founder & CTO

Former Redis engineer and open-source contributor to LLM projects including LangChain and LlamaIndex - bringing the infrastructure and applied-AI depth behind Arcade's runtime.

By The Numbers

A funding curve and a usage curve

Funding raised

Seed (2025) to Series A (2026), USD
Seed '25
$12M
Series A '26
$60M
Total
$72M

Agent tool-call volume

Relative growth over six months (25x)
Month 1
1x
Month 3
~8x
Month 6
25x
Products & Services

What you can build with it

PLATFORM

Secure action layer

Enforce, execute and govern agent actions with multi-cloud (AWS, Azure, GCP) and on-premises deployment.

CATALOG

8,000+ tools

Pre-built, agent-optimized MCP tools and connectors with delegated user authorization handled automatically.

RUNTIME

MCP authorization

The MCP runtime and authorization spec Arcade authored - user auth, token management and policy enforcement.

SDKs

Framework integrations

Python and JavaScript SDKs for LangChain, LangGraph, LlamaIndex, CrewAI, Google ADK and OpenAI Agents.

MODEL

Usage-based B2B SaaS

Route agent actions through a secure gateway on a usage or subscription basis - self-serve to enterprise.

SECURITY

Credential isolation

OAuth tokens are encrypted and salted; the LLM only ever gets scoped, delegated access - never raw secrets.

The Market

Where it fits

Arcade sits at the layer between the models everyone talks about and the systems agents actually need to touch. Its customers are developers building LLM-based agents and large enterprises - the platform is described as running in production at some of the world's largest banks, industrials and pharmaceutical companies, exactly the regulated buyers who cannot deploy an autonomous agent without an audit trail.

CUSTOMERS

Developers & enterprises

From individual builders using the SDKs to Fortune-scale banks, industrials and pharma running agents in production.

PARTNERS

Anthropic & LangChain

Anthropic adopted Arcade's MCP authorization spec; LangChain brought Arcade's tool library into LangSmith Fleet.

ALTERNATIVES

Build vs. buy

The default alternative is in-house agent auth or general integration platforms - the trade-off Arcade is built to remove.

Timeline

From pivot to Series A

2024

Arcade founded

Salazar and Partee found Arcade in San Francisco, concluding the hard part of AI agents is authorization, not the model.

2025 · MARCH

$12M seed

Raised a $12M seed led by Laude Ventures - the first publicly announced investment from Andy Konwinski's fund.

2025

LangChain integration

Arcade's agent-optimized tools land in LangChain's LangSmith Fleet, widening reach across the developer ecosystem.

2026

MCP authorization spec adopted

Anthropic adopts the MCP authorization specification Arcade authored; the tool catalog grows past 8,000.

2026 · JUNE

$60M Series A

Led by SYN Ventures with Morgan Stanley and Wipro; total funding hits $72M and Jay Leek joins the board.

Funding

Who's backing it

SEED · 2025

$12M

Led by Laude Ventures, with Perplexity/Databricks co-founder Andy Konwinski and NEA's Pete Sonsini.

SERIES A · JUNE 2026

$60M

Led by SYN Ventures, with strategic investment from Morgan Stanley and Wipro. Jay Leek joined the board.

FAQ

Quick answers

What does Arcade.dev do?

Arcade provides a secure action layer for AI agents. It handles OAuth authentication, token management, permission enforcement, tool execution and audit logging so agents can safely take real actions in systems like Gmail, Slack, GitHub and Salesforce.

Who founded Arcade.dev?

It was founded in 2024 by CEO Alex Salazar (former Okta VP and Stormpath founder) and CTO Sam Partee (former Redis engineer and open-source LLM contributor).

How much funding has it raised?

$72M total - a $12M seed in 2025 led by Laude Ventures and a $60M Series A in June 2026 led by SYN Ventures with Morgan Stanley and Wipro.

How is it different from just using MCP or building auth yourself?

Arcade authored the MCP authorization spec adopted by Anthropic and provides 8,000+ ready-made tools plus encrypted, per-user delegated authorization - so teams don't have to build fragile OAuth and audit plumbing themselves.

Who uses Arcade.dev?

Developers building LLM-based agents and large enterprises, including some of the world's largest banks, industrials and pharmaceutical companies running agents in production.

Share & Follow

Spread the dossier