15:I[981,["658","static/chunks/658-a698693f56d0116a.js","183","static/chunks/183-6beeeb801c274aaa.js","474","static/chunks/app/%5Btype%5D/layout-e8e83705b5c8d3b7.js"],"Posts"] 16:T498,We built FlowLink because AI agents (Claude Code, Cursor, Copilot) keep executing destructive commands on production servers with no guardrails.

The recent "AI agent deleted production database" post (860 pts here) is exactly what this prevents.

FlowLink is an MCP proxy that sits between your AI agent and your tools. No code changes required. Point your agent config to FlowLink and it starts intercepting destructive commands.

What it does:

Shield Engine intercepts rm -rf, DROP TABLE, git push --force, chmod 777 and 100+ destructive patterns BEFORE execution.

Policy Engine: per-agent, per-tool rules (e.g. "Claude can read but not delete").

Zero-Trust Secrets: agents get scoped, time-limited tokens, never raw credentials.

Telegram approval queue for human-in-the-loop on high-risk operations.

Full audit trail of every agent action.

Setup takes 2 minutes. Works with Claude Code, Cursor, Copilot, any MCP-compatible agent.

Tech: Rust backend, MCP protocol native, E2EE, self-hosted.

Website: https://flowlink.flow-masters.ru

What guardrails are you currently using for AI agents in production? What's missing?17:T4f2,Hi HN,

I have about 2000+ bookmarks that I will never read. Probably you do too. I keep collecting new stuff to read, the list grows longer each day, but I barely get around to reading them, and the problem, as I realised, is more to do with the analysis paralysis on what to read. Sort of like how we spend so much time figuring out what movie to watch on Netflix.

So I made a simple Chrome extension: it picks one bookmark at random, drops you on the page, and gives you two buttons on a floating toolbar - Stumble (next random one) or Done (mark read and move to the next random one). That's it. It takes away the burden of decision altogether, and it's sort of f

Index funds can't say no to SpaceX

In China, Juncheng Vehicle Co Is Making New AE86

ChatGPT voice mode and zalgotext = nightmare fuel

The Highest Break in Professional Snooker – Ronnie O'Sullivan – 153 [video]

Photos, scriptable folders, encrypted federation with friends, WebDAV, an S3 API

SkillOpt – Executive Strategy for Self-Evolving Agent Skills

Carbon Nanotube CPU Cooling with Carbice Ice Pads

Show HN: InterviewSignal – open-source AI-native technical interviews

Spotify boss defends move to AI music, saying it is better than 'slop'

Building an AsyncIO executor for the 3DS (pt 1)

Why Google Accounts Should Be Treated as Critical Infrastructure

Dials

Social media as bad for children as smoking, British doctors say

Pavona: Open-Source Silicon Distribution

Print with dozens of colors: Our new open-source ColorMix for PrusaSlicer

Today, Distribution Is Built Before the Product

Project Push: Live Archive of Push Notifications From Global News Organizations

US Supreme Court won't hear Meta's challenge to Vermont social media lawsuit

Let's Cancel Oasis

AltTab.app makes free features paid, drops old releases

FlowLink: MCP proxy blocking destructive AI agent commands

Shakespeare's World – I thought this would be simple but

Counting Large Numbers of Events in Small Registers (1978) [pdf]

Blitzy AI charges by LOC generated

The Opportunity Atlas

Show HN: Stumbleback – A fun way to get through your reading list

NASA's Geostationary Lightning Mapper contract (Lockheed, 2007-2039) receives

Bit Twiddling Hacks

U.S. Seeks to Give Weapons-Grade Plutonium to Startups for Fuel

Multiple Byte Processing with Full-Word Instructions (1975)

Ask HN: Are you running production workloads in Pytorch eager mode?