Muselab
Context
native.
AI
optional.
Security
mandatory.

In the AI-powered era, security can no longer be an Enterprise-only feature.

We're building the infrastructure to make context-native, security-mandatory systems secure-by-default accessible to everyone—from the substrate layer (Kantext) to the declarative platform (Busbar).

See What We're Building

What We're Building

Three complementary layers.

Kantext

Kantext

A composable type system where every layer folds complexity instead of multiplying it. Tree-shaped composition with universal hash addressing. 145× faster than Neo4j.

Private Beta

Busbar

The declarative systems platform built on Kantext. Every interaction is immutable and universally-addressable. Agents declare intent, the system proves what happened.

Coming Soon

Lab Projects

Open source and experimental projects exploring the boundaries of composable systems, DevOps automation, and security-by-default patterns. Where we test the future.

Open Source

A Decade of Building

Built on real expertise in production systems.

Composable Architecture

Deep experience building systems that layer complexity instead of multiplying it — from CumulusCI powering 200,000+ Salesforce deployments to enterprise platforms at scale.

Security by Design

Security isn't bolted on — it's foundational. Built systems that survived security audits, HackerOne challenges, and real-world breach attempts. Architecting secure infrastructure at scale since 2015.

Developer Experience

Tools that feel invisible because they just work. Built for engineers, by engineers who've shipped thousands of deployments and understand what matters in production.

Our story →

Building for the Future

The conversations that matter most.

In September 2024, we published a series on credential security architecture and DevOps best practices. When the August 2025 breaches occurred, these patterns became impossible to ignore — the vulnerabilities we described were exactly what attackers exploited. The future demands better foundations.

Our Warnings from 2024

Securing Salesforce DevOps: Least Privilege Access Control

Securing Salesforce DevOps: Least Privilege Access Control

CI/CD credentials are the scariest credentials in your Salesforce ecosystem. Here's why, and what to do about it.

5 Critical Security Questions to Ask Your SI Partner

5 Critical Security Questions to Ask Your SI Partner

Dreamforce is just around the corner. Before you hand over the keys to your org, here are five questions you need to ask—questions that became painfully relevant after the 2025 Gainsight breach.

Securing Salesforce DevOps: Multi-Job Workflows in GitHub Actions

Securing Salesforce DevOps: Multi-Job Workflows in GitHub Actions

Getting it working is not the same thing as getting it working securely! Here's how to split GitHub Actions workflows without compromising your org credentials.

Our Vision for 2026

What the Gainsight Breach Teaches Us About AppExchange Security

What the Gainsight Breach Teaches Us About AppExchange Security

The November 2025 Gainsight breach exposed 200+ Salesforce instances—not through a platform vulnerability, but through the cascading effects of a supply chain attack. Here's what actually happened and what it means for ISVs and customers.

Recent Insights

Introducing snowfakery-mcp: Teaching AI to Generate Realistic Test Data

Introducing snowfakery-mcp: Teaching AI to Generate Realistic Test Data

An MCP Server that lets Claude learn Snowfakery's declarative syntax and generate valid recipes in a single conversation.

A Product is More Than a Package

A Product is More Than a Package

Introducing The Composable Delivery Model

Introducing The Composable Delivery Model

CumulusCI is a Misnomer, That's My Fault

CumulusCI is a Misnomer, That's My Fault

More Insights

Explore the archive →

All insights →

Ready to build context-native systems?

Whether you're exploring Kantext, evaluating Busbar, or looking to collaborate on composable infrastructure—let's talk.

Book a CallExplore Busbar