frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

The Spec Ceiling: Why AI Coding Speed Moves the Bottleneck to Product Discovery

https://magnus919.com/2026/07/the-spec-ceiling-why-ai-coding-speed-moves-the-bottleneck-to-produc...
1•vinhnx•1m ago•0 comments

Trump Pushes Out Members of Bipartisan Election Commission Ahead of Midterms

https://www.propublica.org/article/federal-election-assistance-commission-trump-dismantled
1•hn1986•1m ago•0 comments

Netflix in Talks to Buy Letterboxd

https://variety.com/2026/digital/news/letterboxd-sales-talks-netflix-sony-paramount-1236806379/
2•theanonymousone•2m ago•0 comments

Quills and conflict: How protection in the Strait of Hormuz is bought and sold

https://www.cnn.com/2026/07/10/business/lloyds-of-london-strait-of-hormuz-intl
1•RetroTechie•4m ago•0 comments

Could Strategy's Potential Bitcoin Sale Reshape Market Sentiment?

https://coinmarketcap.com/community/post/377668818/
1•joeymabia1•5m ago•0 comments

Show HN: WindowBunny – Window Switcher built for trackpad users

https://www.windowbunny.com
1•AbjMV•5m ago•0 comments

AI Web Design (Opus vs. Sol)

https://ploy.ai/blog/ai-web-design-with-opus-and-sol
1•brryant•6m ago•1 comments

EcmaScript 2026 (17th edition) is out now

https://blog.pstoev.com/2026/07/ecmascript-2026-17th-edition-is-out-now/
1•pstoev•6m ago•0 comments

Ask HN: Burned Tokens scented candle ideas

1•Tade0•8m ago•0 comments

Friday Night Funkin' AA Running on Windows 2000

https://www.tiktok.com/@funkingrounds_romania/video/7659481121012321558?_r=1&_t=ZN-97uypwMCEkw
1•funkinaa•8m ago•1 comments

Record Companies Push to Label AI Songs on Streaming Platforms

https://www.wsj.com/tech/ai/record-companies-push-to-label-ai-songs-on-streaming-platforms-103aa392
1•ilreb•8m ago•0 comments

JDK API Changes in Java 27

https://javaalmanac.io/jdk/27/apidiff/26/
1•theanonymousone•9m ago•0 comments

The Annotated JEPA

https://elonlit.com/scrivings/the-annotated-jepa/
2•surprisetalk•10m ago•0 comments

Show HN: Snitch – Deterministic prose claim verifier for coding agents. (OSS)

https://github.com/fristovic/snitch
2•fristovic•11m ago•0 comments

The hard part of AI root cause analysis is no longer the model

https://coroot.com/blog/hard-part-of-ai-root-cause-analysis-is-no-longer-the-model/
2•valyala•13m ago•0 comments

Memories Can't Wait–Or, How I Learned to Keep Worrying About the Web

https://zeldman.com/2026/07/06/memories-cant-wait-or-how-i-learned-to-keep-worrying-about-the-web/
2•speckx•13m ago•0 comments

Older adults know AI is slop. They just like it

https://restofworld.org/2026/china-seniors-ai-slop/
2•cdrnsf•14m ago•0 comments

Why Fear Matters in Governing Military AI

https://www.techpolicy.press/why-fear-matters-in-governing-military-ai/
2•cdrnsf•14m ago•0 comments

Man nearly sucked out of 'detached' window on Ryanair flight

https://www.rte.ie/news/2026/0710/1582735-world-ryanair/
4•theanonymousone•14m ago•3 comments

ActivityPub over ATProto

https://berjon.com/ap-at/
3•albuic•15m ago•0 comments

Offline tool to stabilize TV volume using IR control and spike detection

https://github.com/AdBusterOfficial/Adbuster--WinApp
12•Bo_Amigo_910•15m ago•0 comments

Communities will build trust for public media. Chicago is taking a leap forward

https://werd.io/communities-will-build-trust-and-loyalty-for-local-public-media-chicago-public-me...
2•benwerd•15m ago•0 comments

K2 Airways Cargo 737 Crashes into Arabian Sea

https://www.flightradar24.com/blog/flight-tracking-news/major-incident/k2-airways-cargo-737-accid...
2•teepo•17m ago•0 comments

Proton AG Services is currently experiencing some issues

https://status.proton.me/incidents/01lxtcq155lc
7•exploraz•18m ago•1 comments

Show HN: Pay-per-call MCP server with 47 AI endpoints, micropayments via x402

https://goldbean-api.xyz
2•13639366668•19m ago•0 comments

Show HN: Hacker News book recs as study guides

https://biteread.ai/collection/hacker-news-top-nonfiction
2•xxbondsxx•19m ago•0 comments

Write code like a human will maintain it

https://unstack.io/write-code-like-a-human-will-maintain-it
17•ScottWRobinson•22m ago•5 comments

Show HN: LifetimeR–A memento mori wallpaper generator (life,year,goal calendars)

https://lifetimer.vercel.app/
2•alvaro_l_torres•23m ago•0 comments

Successful Companies Go Blind

https://ianreppel.org/how-successful-companies-go-blind/
4•speckx•24m ago•0 comments

Scarf has moved away from Haskell

https://avi.press/posts/2026-07-10-after-7-years-in-production-scarf-has-reluctantly-moved-away-f...
3•aviaviavi•24m ago•0 comments