frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

The Second Coming of the Command Line

https://cautomaton.com/articles/second-coming-of-the-command-line/
1•jaaron•36s ago•0 comments

PlayStation 5 Linux project gets upgraded to support new firmware and PS5 Slim

https://www.gamingonlinux.com/2026/07/playstation-5-linux-project-gets-upgraded-to-support-new-fi...
1•watermelon0•1m ago•0 comments

AI's next bottleneck is power

https://www.businessinsider.com/why-creator-economy-startup-founder-pivot-data-center-power-tar-2...
2•toredo1729_2•4m ago•0 comments

NanoShell: A preemptively multi-tasked 32-bit OS with a windowed GUI

https://github.com/iProgramMC/NanoShellOS
1•mrunix•4m ago•0 comments

Show HN: Classify mechanical faults using Contrastive Language-Audio Pretraining

https://github.com/adam-s/car-diagnosis
1•dataviz1000•4m ago•0 comments

Please Do Not Touch

https://readme.dm/please-do-not-touch/
1•dmadisetti•8m ago•0 comments

AI Danger VC

https://aidangervc.com
1•ipostragebait•10m ago•0 comments

Crowded planes and airports set records, straining the U.S. aviation system

https://text.npr.org/nx-s1-5869367
1•mooreds•10m ago•0 comments

Why did it take us hundreds of years to discover plate tectonics?

https://worksinprogress.co/issue/on-the-origin-of-continents/
1•devitoria•10m ago•0 comments

America, Onscreen

https://www.nytimes.com/2026/07/01/movies/what-is-the-definitive-movie-about-america.html
1•mooreds•10m ago•0 comments

They built the world’s most powerful AI. Facing a mystery they can't explain

https://www.washingtonpost.com/technology/2026/07/01/biggest-tech-companies-are-considering-wheth...
1•pseudolus•10m ago•1 comments

Tungsten Mine Predicts Major Wars. It's Opening Again

https://www.bloomberg.com/graphics/2026-opinion-australia-tungsten-mine-us-war-defense-china/
2•mooreds•11m ago•0 comments

Show HN: Pglayers – PostgreSQL extensions as stackable Docker layers

https://github.com/pglayers/pglayers
2•iemejia•12m ago•0 comments

Cider 2.0 Is Brewing

https://metaredux.com/posts/2026/06/30/cider-2-0-is-brewing.html
1•eigenhombre•12m ago•0 comments

Self-Hosted GitHub Actions Runners on Lambda MicroVMs

https://github.com/mkdev-me/terraform-aws-github-runner-lambda-microvms/tree/main
2•fodoj•13m ago•2 comments

The Decadent Double Dealer

https://64parishes.org/decadent-double-dealer
1•jruohonen•13m ago•0 comments

Ask HN: Developers and Builders, what have you shipped this week?

1•enlightpixel•14m ago•0 comments

Google kills Tenor GIF API, forcing changes at X, Discord, and more

https://arstechnica.com/gadgets/2026/06/google-kills-tenor-gif-api-forcing-changes-at-x-discord-a...
2•scommab•14m ago•0 comments

Over 900 Oracle E-Business instances exposed to ongoing attacks

https://www.bleepingcomputer.com/news/security/over-900-oracle-e-business-instances-exposed-to-on...
3•Brajeshwar•15m ago•0 comments

Show HN: A Simple Investment Portfolio Tracker

https://zenvesto.com/
3•zenvesto•19m ago•0 comments

Ensuring fairness and safety: €3 customs duty for low-value parcels

https://commission.europa.eu/news-and-media/news/ensuring-fairness-and-safety-eur3-customs-duty-l...
2•robin_reala•19m ago•0 comments

Buyers Disappointed as eBay Pulls Gift Cards Again

https://www.ecommercebytes.com/C/blog/blog.pl?/pl/2026/6/1782874791.html
1•ilamont•20m ago•0 comments

When anything is possible, how do you decide what to create?

https://digitalseams.com/blog/making-things-interview-series
1•bobbiechen•20m ago•0 comments

Show HN: AI Score Chrome extension, measure how AI agents read your docs site

https://chromewebstore.google.com/detail/jamdesk-ai-score/mhihkkgpcbmapmojnakhjfhjmiagkhlj
2•gbourne•20m ago•0 comments

Developers React to AI-Scented Blog Posts

https://writethatblog.substack.com/p/dev-reaction-to-ai-blog-posts
1•robin_reala•23m ago•0 comments

Verd: AI trip-plan checks for visa, connection, and border risks

https://verd.nanocorp.app
2•verdlaunch•23m ago•0 comments

Building Docker images 7x Faster with Clipper

https://clipper.dev/blog/buildkit-profile
1•a_t48•23m ago•1 comments

Show HN: Sidedoor – Paste any job, find who in your network can refer you

https://happenstance.ai/sidedoor
3•welshpony•25m ago•1 comments

PlayStation will end physical disc production for new games in 2028

https://www.cnbc.com/2026/07/01/sony-playstation-physical-disc-production-2028.html
2•shinryudbz•27m ago•0 comments

Using ChatGPT is not bad for the environment

https://blog.andymasley.com/p/a-short-summary-of-my-argument-that
4•ck2•28m ago•2 comments