frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Semantic Layer as Middleware Is Not Enough

https://blog.strata.do/p/semantic-layer-middleware-is-not
1•ajoski9•26s ago•0 comments

RustDuck: An In-Depth Analysis of a Two-Stage Botnet

https://blog.xlab.qianxin.com/rustduck-en/
1•uneven9434•41s ago•0 comments

Architecting Secure Prompt Caching

https://tinfoil.sh/blog/2026-07-14-secure-prompt-caching
1•FrasiertheLion•1m ago•0 comments

The Hard Parts

https://withinboredom.info/posts/the-hard-parts/
1•withinboredom•2m ago•0 comments

Show HN: Paste an X post URL, get a death metal song back

https://post2song.namo-overlay.com
1•toyoshi•5m ago•0 comments

Pocket YouTube: Streaming YouTube to a PSP over a USB Cable

https://pocketjs.dev/blog/pocket-youtube/
1•doodlewind•5m ago•0 comments

Wandr Benchmark: Evaluating Research Agents That Must Search Wide and Deep

https://research.perplexity.ai/articles/wandr-benchmark-evaluating-research-agents-that-must-sear...
1•tagawa•7m ago•1 comments

M 3.9 Experimental Explosion – 147 Km ENE of Ponce Inlet, Florida

https://earthquake.usgs.gov/earthquakes/eventpage/us7000t13l/executive
2•hnburnsy•7m ago•0 comments

Ask HN: I built it and nobody came. What got you your first users?

1•deadcatfound•14m ago•0 comments

Ask HN: How do you maintain context across your coding sessions?

1•reveriedev•15m ago•0 comments

The Problem Claude Cowork and ChatGPT Work Mode Doesn't Solve

https://medium.com/@vektormemory/the-problem-claude-cowork-chatgpt-work-mode-doesnt-solve-remote-...
1•vektormemory•15m ago•0 comments

From WS_FTP to instructions.md: thirty years of web development

https://www.knut.fyi/blog/2026-07-16/but-some-of-us-were-watching
1•kmelve•16m ago•0 comments

Writing Doom (on super artificial intelligence) [video]

https://www.youtube.com/watch?v=xfMQ7hzyFW4
1•Eddy_Viscosity2•19m ago•0 comments

Shanay-Timpishka, a boiling hot river 700km from the nearest active volcano

https://terradaily.com/anything-that-falls-into-a-four-kilometre-stretch-of-a-river-in-the-centra...
1•camtarn•20m ago•0 comments

Scientists Created a Wearable You Can Paint Directly onto Your Skin

https://gizmodo.com/scientists-created-a-wearable-you-can-paint-directly-onto-your-skin-2000784919
1•gmays•22m ago•0 comments

How HN: Slopfence – browser native DLP that stops secrets leaking to LLMs

https://slopfence.com
1•joshiabir•23m ago•0 comments

Kaggle Linter, notebook-wide Ruff and Flake8 linting for Kaggle

https://chromewebstore.google.com/detail/kaggle-linter/mmckiielmlncmbalaffggabchfbhdfoi
1•chater•25m ago•0 comments

Skillbench

https://skillbench.arcade.dev/browse
3•gnanagurusrgs•29m ago•0 comments

Show HN: Forall – Spec-driven AI coding with formal verification

https://github.com/astrio-labs/forall
7•Nolan_Lwin•30m ago•0 comments

Caseway and MiTAC Advance Technology Partner to Bring Trusted AI Intelligence

https://www.suasnews.com/2026/07/caseway-and-mitac-advance-technology-partner-to-bring-trusted-ai...
1•ClearwayLaw•30m ago•1 comments

The Mechanics of ARR Loans

https://lesbarclays.substack.com/p/the-mechanics-of-arr-loans
1•lesbarclays•31m ago•0 comments

DiffGI Differentiable Geometry Images for High-Fidelity Thin-Shell 3D Generation

https://ejshim.github.io/diffgi/
2•throwaway2027•31m ago•0 comments

The Human-in-the-Loop Is Tired

https://pydantic.dev/articles/the-human-in-the-loop-is-tired
3•haritha1313•31m ago•0 comments

Cerebras Built Its Enterprise Knowledge Base

https://www.cerebras.ai/blog/how-we-built-our-knowledge-base
1•haritha1313•32m ago•0 comments

Show HN: Justif – publication-grade text justification for the web

https://justif.lyall.co/
1•lyall•33m ago•0 comments

WTF are modular forms (2024)

https://graemephi.github.io/posts/modular-forms/
2•marysminefnuf•33m ago•0 comments

No Shark Is Safe: Shark Vacuums Are Vulnerable to RCE

https://tokay0.com/posts/millions-of-shark-vacuums-vulnerable-to-rce.html
2•dlgeek•33m ago•0 comments

'Rust makes coding fun again': Greg explains why Linux is moving away from C

https://www.zdnet.com/article/greg-kroah-hartman-linux-kernel-rust/
2•maxloh•39m ago•0 comments

Lingbot-map: A 3D foundation model for reconstructing scenes from streaming data

https://github.com/Robbyant/lingbot-map
2•olalonde•45m ago•0 comments

Alphabet shares fall on Gemini 3.5 Pro delay

https://www.cnbc.com/2026/07/16/alphabet-stock-gemini-3-5-pro-ai.html
4•PessimalDecimal•46m ago•0 comments
Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.