frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

Tesla Home Energy Management System

https://www.tesla.com/en_ca/tesla-home
1•voisin•59s ago•0 comments

The Two Waters, one extra-dimensional

1•tintweezl•1m ago•0 comments

Mushroom Management

https://en.wikipedia.org/wiki/Mushroom_management
2•chistev•2m ago•0 comments

ICE sent officers to a man's home over an email. Now he's suing

https://apnews.com/article/ice-lawsuit-free-speech-first-amendment-immigration-7c02685c16e4b141be...
4•johnnyApplePRNG•3m ago•0 comments

Using Linux tc to limit the outgoing bandwidth of a web server

https://utcc.utoronto.ca/~cks/space/blog/linux/TcLimitServiceBandwidth
2•LorenDB•4m ago•0 comments

SmolMail: An AI agent for Gmail that answers in visuals, not walls of text

https://smolmail.com/
2•narinluangrath•17m ago•0 comments

Path to Google's #1 Position

https://mysevenstars.com/articles/SEO-Google-top-rank.html
3•rajkverma123•18m ago•0 comments

EU plan to address the risks and opportunities of advanced AI for cybersecurity

https://commission.europa.eu/news-and-media/news/new-eu-plan-address-risks-and-opportunities-adva...
2•rstagi•20m ago•0 comments

Probabilistic "Copies" in Generative AI Models [pdf]

https://download.ssrn.com/2026/7/6/7067878.pdf?response-content-disposition=inline&X-Amz-Security...
2•droidjj•21m ago•0 comments

Show HN: Chiptune Radio

https://chiptune-radio.alephvoid.com/
3•bootbloopers•21m ago•0 comments

Claude Fable extended to July 12

https://www.forbes.com/sites/sandycarter/2026/07/07/claude-fable-5-extends-by-five-more-days-10-m...
3•alexkkoo93•23m ago•0 comments

How to Read Postgres Explain: A Guide to Scan Types

https://www.crunchydata.com/blog/postgres-scan-types-in-explain-plans
3•craigkerstiens•38m ago•0 comments

Australia's Biggest Telco has nationwide outage

https://www.abc.net.au/news/2026-07-08/telstra-network-issues-internet-phones-live/106891206
2•a10c•40m ago•3 comments

Rlm-Workflow

https://try.works/projects#rlm-workflow
4•handfuloflight•44m ago•0 comments

China Is About to Pop the AI Bubble [video]

https://www.youtube.com/watch?v=siazPdsZHuI
3•Bender•50m ago•1 comments

From classroom to lab: Introducing turnkey lab exercises in IEEE 5G/6G Testbed

https://testbed.ieee.org/from-the-classroom-to-the-lab-introducing-turnkey-lab-exercises-in-the-i...
2•teleforce•55m ago•0 comments

Harica: Issuance and refusal to revoke TLS certificates for sanctioned entities

https://bugzilla.mozilla.org/show_bug.cgi?id=2049237
3•keydown•58m ago•0 comments

An interactive explorer for Benford's Law across real datasets

https://vatsalbakshi.com/blog/benfords-law/
6•dingobabies•58m ago•0 comments

Show HN: use a web browser over SSH right now.

2•keepamovin•59m ago•0 comments

Show HN: Turbo – An open-source, fast HTTP server with a real-time config GUI

https://turbo.okzgn.com
3•okzgn•59m ago•1 comments

Chicago Fed launches a new consumer sentiment composite index

https://www.marketplace.org/story/2026/07/06/why-is-consumer-sentiment-disconnected-from-consumer...
4•toomuchtodo•1h ago•1 comments

What Is Browser Fingerprinting?

https://medium.com/@thesuperrepemail/what-is-browser-fingerprinting-2c7f1a419b09
3•rajsuper123•1h ago•0 comments

Descent – EGA point-and-click game set inside a neural network's hidden layers

https://schwarzarno.itch.io/descent
3•schwarzarno•1h ago•1 comments

Tenda firmware (multiple versions) contains hidden authentication backdoor

https://kb.cert.org/vuls/id/213560
2•miniBill•1h ago•0 comments

Show HN: Fortress – a stealth Chromium so your agents stop getting blocked

https://github.com/tiliondev/fortress
11•arhamshahrier•1h ago•2 comments

GPTZero to Join Superhuman

https://gptzero.me/news/preserving-whats-human/
2•SpyCoder77•1h ago•0 comments

See What's Next for Firefox

https://www.firefox.com/en-US/whatsnext/
6•birdculture•1h ago•0 comments

Honey, We Bought an AI Story

https://www.bona-books.com/news/we-bought-an-ai-story
13•bigiain•1h ago•2 comments

Lead–Crime Hypothesis

https://en.wikipedia.org/wiki/Lead%E2%80%93crime_hypothesis
2•chistev•1h ago•1 comments

Anthropic Expands In Manhattan, Part of an AI Boom in New York

https://www.nytimes.com/2026/07/07/nyregion/anthropic-ai-boom-nyc.html
3•jbegley•1h ago•0 comments