Documentation

The End of SaaS, or Its Evolution? — Strategies SaaS Companies Must Adopt in the Age of AI Agents

This white paper analyzes the impact of AI agents on the SaaS business, outlines the strategies SaaS companies should adopt, and shares the real story of QueryPie AI's transformation from a SaaS vendor to an AI-native company.

Guardrail Design in the AI Agent Era (2026 Edition) — Part 1: Philosophy & Design

As AI agents move from conversational assistants to autonomous executors, enterprises need stronger control systems. This 2026 guide explains a four-element guardrail framework—Permission, Approval, Audit Trail, and Kill Switch—for CxOs and operational leaders.

Guardrail Design in the AI Agent Era (2026 Edition) — Part 2: Practice & Implementation

A practical implementation guide for AI-agent guardrails. Includes three case studies (PC-operation agents, development AI vulnerabilities, and autonomous 5G operations), a reusable checklist, and a 90-day rollout roadmap.

コード生成およびAgentic RAGタスクを中心とした特定ドメインのためのLLM比較評価【前編】

LLMのベンチマークを信じないでください。ドメインに最適化されたLLMを自ら評価・選定しましょう。日本の給与システムの実パイプラインを対象に、13のLLM構成を体系的に比較評価した研究の前編です。

コード生成およびAgentic RAGタスクを中心とした特定ドメインのためのLLM比較評価【後編】

13のLLM構成による実験結果を徹底分析。Thinkingモードの意外な落とし穴、GPTの安定性問題、そして60%のコスト削減を実現する最適パイプライン構成を明らかにします。

Why Japanese Enterprises Are Accelerating Their AI Transformation Now

A concise, executive guide that diagnoses Japan’s AI gaps and delivers a pragmatic roadmap to turn AI into enterprise-wide productivity and growth.

Your Architecture vs. AI Agents: Can MCP Hold the Line?

In this article, we clearly distinguish the roles of the MCP server and AI agents, providing a structured explanation of their respective responsibilities and limitations to prevent misunderstandings.

Welcome to the Age of AgentSecOps—Code Stands Still, Agents Take Over

As AI agent–based automation systems continue to proliferate, we’ve moved beyond simple task automation to a new paradigm: AgentOps, where autonomous agents make decisions and interact with external systems on their own. In this article, we explore the emerging concept of AgentSecOps—security operations tailored for agent-driven environments—and take a deep dive into how its structure and role compare to traditional DevSecOps frameworks.

Beyond MCP to MCPS: The Need for a Secure Protocol for Enterprise AI

MCP(Model Context Protocol) is innovative, but it has a critical weakness for use in enterprise environments. In this article, we will look at the basic concepts and current status of MCP, and deeply analyze the security issues that arise in enterprise environments.

Google Agentspace Gets Things Done—QueryPie MCP PAM Keeps Them Safe

Google Agentspace is a powerful AI execution platform, but unchecked automation raises security concerns. This post explores how QueryPie MCP PAM enables secure, policy-based control for enterprise-grade AI adoption.

Uncovering MCP Security: Threat Mapping and Vulnerability Analysis through Literature-based Investigation

As AI systems become increasingly interconnected, context sharing between models is critical to ensure reliable reasoning and secure execution. This white paper analyzes recent research on the Model Context Protocol (MCP), identifies key security threats, and proposes a next-generation architecture—MCP PAM—for context-aware access control and autonomous policy enforcement.

AI Can Drive Itself—Why Not Secure Itself? Introducing Autonomous Access Control

In an era where AI directly executes system operations, traditional security models are no longer enough. This white paper introduces a new security paradigm for MCP-based AI execution environments—QueryPie MCP PAM—and outlines strategic approaches to achieving Autonomous Access Control.

MCP PAM as the Next Step Beyond Guardrails

As generative AI adoption accelerates, traditional guardrails fall short in securing real-world LLM integrations. This whitepaper explores how MCP-based Privileged Access Management (PAM) complements existing safeguards to enforce user-intent-aware, context-driven control over AI operations—addressing threats like prompt injection, insider abuse, and sensitive data leakage.

Security Governance and Integrated PAM Strategy for AI Agents in the Age of the Model Context Protocol (MCP)

Learn how integrating Privileged Access Management (PAM) into the Model Context Protocol (MCP) framework strengthens AI governance, enhances visibility, and mitigates emerging security risks in enterprise environments.

Secure Server Access in an Era of Network Isolation: Multi-hop Bidirectional Tunneling via the SSH Protocol

As enterprises adopt network isolation, secure access to internal servers becomes more complex. This white paper outlines the limitations of traditional SSH methods and explains how QueryPie enables seamless, scalable server access through multi-hop tunneling and centralized control—without exposing intermediate credentials.

Optimal Method for Using a Terminal with Seamless SSH Connection

Discover an optimal method for seamless SSH connections that enhances security without disrupting the CLI workflow. Learn how QueryPie’s approach eliminates the need for additional agents while maintaining robust access control.

QueryPie gRPC DAST Security: ZAP Custom Script Example

Learn how QueryPie leverages gRPC communication for high performance and stability in web applications.

Efficient Storage and Management of Large-Scale Audit Logs (OVEN)

Guiding efficient storage and management of large-scale audit logs while meeting security and compliance requirements.

Access Control for Secure Operation of Kubernetes Clusters

QueryPie ensures secure Kubernetes access control for improved cloud cluster management and operational security.

Revolutionizing Security Management with Policy as Code (PaC)

Automate and optimize security protocols using QueryPie's Policy as Code, ensuring compliance and reducing risks.

Core Technology for Parsing SQL Across Multiple Vendors: QSI (Query Structural Interface)

Enhance system security with QueryPie's native command control through an advanced SSH proxy architecture.

QueryPie’s New Standard for Penetration Testing

QueryPie sets a new benchmark in penetration testing to prevent vulnerabilities and secure systems effectively.

Improving Personal Data Identification and Analysis with AI

Utilize QueryPie's AI to analyze personal data, ensuring better privacy management and regulatory compliance.

Preventing Command Bypass at the Source with Process-Tracking Methods

Prevent command bypass threats at the source with QueryPie's innovative process-tracking methods.

QueryPie’s DevSecOps Pipeline: Proven to Enhance Development Speed and Stability

Streamline development with QueryPie's DevSecOps pipeline for enhanced speed, stability, and security.

Secure Login Token Management: An Essential Frontend Strategy

Secure user authentication with QueryPie's login token management, enhancing frontend security and data protection.

Shell Native Command Control through SSH Proxy Architecture

Enhance system security with QueryPie's native command control through an advanced SSH proxy architecture.

Building a Transaction-Free, Flawless CDC (Change Data Capture) System

Sync data seamlessly with QueryPie's CDC system, ensuring conflict-free updates without transactions.

RAG 2.0 Security: Microsoft and Meta’s Groundwork, QueryPie Builds the Bridge

This article introduces the background and security architecture of RAG 2.0 and emphasizes the importance of execution flow control through various corporate cases. RAG 2.0 is differentiated from existing RAGs in that it goes beyond simple document search and applies policies in real time to prevent sensitive information from being delivered to the wrong users.