frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

Show HN: Talon – a self-hosted harness for long-lived AI agents

https://github.com/dylanneve1/talon
1•claudiusthebot•1m ago•0 comments

Young adults are poor despite every metric which suggests otherwise

https://xcancel.com/i/article/2077113148524417439
3•like_any_other•5m ago•1 comments

Amp – Subscriptions at Last

https://ampcode.com/news/subscriptions
1•monty5811•5m ago•0 comments

Netflix Paid $587M for Ben Affleck's AI Startup InterPositive

https://variety.com/2026/film/news/netflix-paid-587-million-ben-affleck-ai-interpositive-1236815111/
2•andsoitis•6m ago•0 comments

Show HN: I made a LeetCode tracker that looks like Hacker News

https://leet150.vercel.app/
1•joudbitar•8m ago•0 comments

Show HN: OpenCareLoop - Solve your family's health, one loop at a time.

https://karankurani.github.io/OpenCareLoop/
1•BIackSwan•8m ago•0 comments

DOOMQL – Game Engine in SQL

https://github.com/petergpt/doomql
2•andsoitis•9m ago•0 comments

Setting up your spare Mac for Claude Code to control, a step-by-step guide

https://ykdojo.github.io/claude-controls-mac/
8•ykev•13m ago•1 comments

Show HN: FreelyMemo – A floating notepad on every tab

https://chromewebstore.google.com/detail/freelymemo-a-floating-not/heffeleefkjalhablljfohlcejiegpgb
1•kythanh•14m ago•0 comments

Soofi S: Our first model for industrial AI in Europe

https://www.soofi.info/
1•doener•17m ago•0 comments

Fake food delivery site for the dopamine

https://old.reddit.com/r/BingeEatingDisorder/comments/1uzr3ui/fake_food_delivery_site_for_the_dop...
7•guerrilla•17m ago•2 comments

How early SunOS did diskless workstations before NFS

https://utcc.utoronto.ca/~cks/space/blog/solaris/SunOSDisklessWithoutNFS
2•cwbuilds•19m ago•0 comments

The AI with a Thousand Voices

https://medium.com/@ic-eight/the-ai-with-a-thousand-voices-374680948342
1•ic_eight•20m ago•0 comments

Frozen 2 should be Rated R

https://interconnected.org/home/2026/07/17/frozen
7•peteforde•21m ago•0 comments

Ask HN: Claude Creating Artifacts?

1•ftchd•22m ago•0 comments

No link between acetaminophen use during pregnancy and adverse birth outcomes

https://sph.unc.edu/sph-news/no-link-between-acetaminophen-use-during-pregnancy-and-adverse-birth...
6•geox•22m ago•0 comments

Our Approach to Bioresilience: Isomorphic Labs and Google DeepMind

https://deepmind.google/blog/our-approach-to-bioresilience/
3•bookofjoe•23m ago•0 comments

Heat can trigger or intensify mental illnesses

https://www.meduniwien.ac.at/web/en/about-us/news/2023/news-in-august-2023/heat-can-trigger-or-in...
4•tosh•23m ago•0 comments

Google fixing Android lock screen bug that lets Gemini send SMS without a PIN

https://www.theregister.com/security/2026/07/17/google-fixing-android-lock-screen-bug-that-lets-g...
1•Bender•26m ago•0 comments

AI spam filters are getting suckered by old-school text salting

https://www.theregister.com/security/2026/07/17/ai-spam-filters-are-getting-suckered-by-old-schoo...
1•Bender•27m ago•0 comments

Britain's Kerr breaks 27-year mile world record in London

https://www.bbc.com/sport/athletics/articles/cx2jl1wge2po
1•nadermx•27m ago•0 comments

Hegseth wants a "High-T" military; doctors call it a clinical minefield

https://arstechnica.com/health/2026/07/hegseth-wants-a-high-t-military-doctors-call-it-a-clinical...
3•Bender•28m ago•2 comments

Show HN: Randomly Generated ASCII Trees

https://gist.githubusercontent.com/Soham-Saha/f6e8d25327ee86b915c53ac73e4eb7b3/raw/aeba99ece14c90...
1•omegacombinator•28m ago•0 comments

Building Dynamic Rule Engines in Elixir with Excanon

https://medium.com/@juan.lovera4/stop-hardcoding-business-rules-building-dynamic-rule-engines-in-...
1•allanmacgregor•30m ago•0 comments

RS-Key: Security Key. Fido/OpenPGP Firmware for RP2350

https://github.com/TheMaxMur/RS-Key
2•envbinsus•33m ago•0 comments

Surrender as a non-stupid life strategy

https://sashachapin.substack.com/p/should-you-be-in-charge-of-your-life
2•eatitraw•36m ago•1 comments

Denote Notes on the iPhone

https://en.andros.dev/blog/9abcdcfe/your-denote-notes-on-the-iphone/
1•andros•36m ago•0 comments

Gleam Is Now on Tangled

https://tangled.org/gleam.run/gleam
42•nerdypepper•42m ago•14 comments

The Fermi Paradox, Percolation, and Inbreeding

https://reactormag.com/the-fermi-paradox-percolation-and-inbreeding/
7•bryanrasmussen•47m ago•0 comments

Trump Media pitched $100k monthly fee for fast feed of president's posts

https://www.ft.com/content/e466df85-fa3b-4a7f-a4a1-ae04d66db99f
5•theahura•49m ago•0 comments