frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Show HN: Keyline, share .env files encrypted before they leave your laptop

https://keyline.sh/
1•boyadzhiev•43s ago•0 comments

TSMC Hikes Sales, Spending Outlook to Catch AI 'Megatrend'

https://www.bloomberg.com/news/articles/2026-07-16/tsmc-beats-lofty-estimates-in-latest-sign-of-s...
1•lesbarclays•1m ago•0 comments

Lakehouse as Context Store

https://altertable.ai/blog/2026-07-15-lakehouse-as-context-store
1•altertable•1m ago•0 comments

Productivity multi-tool – from the makers of flipper

https://busy.app/
1•yitchelle•8m ago•1 comments

15 Years of Free Software Projects: A Review

https://blog.frankrousseau.fr/15-years-of-free-software-projects-a-review/
2•gelnior•11m ago•0 comments

Show HN: Pokayoke – turn code conventions into checks for agents

https://pokayoke.codes
1•sarreph•12m ago•0 comments

AI-Generated UI Is Inaccessible by Default

https://master.dev/blog/ai-generated-ui-is-inaccessible-by-default/
1•darkwater•14m ago•0 comments

Uber Announces Acquisition Offer for Delivery Hero at $14.8B

https://investor.uber.com/news-events/news/press-release-details/2026/Uber-Announces-Acquisition-...
3•pookieinc•18m ago•0 comments

Show HN: Enhanced YARA to detect threats in JavaScript using context and content

https://github.com/rishi-sekantsec/sekant-intercept-js
1•iamrik9•19m ago•0 comments

Slower AI Improvement Means More Spending

https://www.bargo.ai/research/slow-takeoff-fast-spending
1•Kavon2992•20m ago•0 comments

What's your quality standard for good software?

1•CatalystPz•20m ago•1 comments

Flanner.io - Stop drowning in AI .md files.

https://www.flanner.io/
1•jaysonm•22m ago•0 comments

Rustwright – a Rust Rewrite of Playwright

https://github.com/Skyvern-AI/rustwright
2•serial_dev•23m ago•0 comments

No hiring if an AI can do the job, staff at mining giant told

https://www.smh.com.au/business/workplace/no-hiring-if-an-ai-can-do-the-job-staff-at-mining-giant...
2•Alien1Being•24m ago•1 comments

Microsoft's Design Tactics Still Compromise Free Browser Choice

https://research.mozilla.org/browser-competition/over-the-edge-2/
1•harrybr•25m ago•0 comments

Gecode 6.3.0 and 6.4.0 are released

https://zayenz.se/blog/post/gecode-6-3-and-6-4-released/
1•mzl•26m ago•0 comments

Show HN: Build your own apps on Mu

https://micro.mu/blog/post?id=build-your-own-apps
1•asim•27m ago•0 comments

Why AI code review is not enough

https://blog.codacy.com/ai-code-review-is-not-enough-how-engineering-leaders-should-gate-ai-gener...
1•ARayOutOfBounds•29m ago•1 comments

8Bit Computers

https://8bit.gioorgi.com//
1•daitangio•29m ago•2 comments

GPS Map Camera: Timestamp

https://play.google.com/store/apps/details?id=com.gpsmapcamera.gpscameratimestamp.photo.video&hl=...
1•karlnelsone•31m ago•0 comments

ICD-10 chapters and code letters

https://www.johndcook.com/blog/2026/07/14/icd-10-chapters-letters/
1•ibobev•32m ago•0 comments

Thermodynamic Computers Go with the (Energy) Flow

https://www.quantamagazine.org/thermodynamic-computers-go-with-the-energy-flow-20260715/
2•ibobev•32m ago•0 comments

Detecting Full Table Scans with SQLite

https://tenderlovemaking.com/2026/07/15/detecting-full-table-scans-with-sqlite/
1•ibobev•32m ago•0 comments

Apple in talks with PrismML, which shrinks AI models up to 15x to run on iPhones

https://www.cnbc.com/2026/07/14/apple-prismml-ai-compression-iphone.html
1•mgh2•34m ago•0 comments

Men Without Guns- Tribute to Larry McMurtry

https://religiondispatches.org/2021/05/03/men-without-guns-tribute-larry-mcmurtry
1•oliculipolicula•35m ago•0 comments

Uber Agrees to Buy Delivery Hero in $14.8 Billion Deal

https://www.bloomberg.com/news/articles/2026-07-16/uber-agrees-to-buy-delivery-hero-as-food-secto...
2•thm•40m ago•0 comments

AWS CloudFront Is Down

https://health.aws.amazon.com/health/status?eventID=arn:aws:health:global::event/CLOUDFRONT/AWS_C...
11•komape•48m ago•1 comments

Atelier, an open source local AI desktop app for everyone

https://open-atelier.app
1•acleefr•48m ago•0 comments

Nervé: Some Things Here Are Not Right

https://www.royalroad.com/fiction/103797/the-journals-of-noiruzi-sangsung/chapter/2485794/nerve-s...
1•bryanrasmussen•49m ago•0 comments

WorkOS Having a Major Outage

https://status.workos.com
5•weli•50m ago•2 comments
Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.