frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

The Long Tail of Work Left Until ActivityPub Has E2EE

https://soatok.blog/2026/07/15/the-long-tail-of-work-left-until-activitypub-has-e2ee/
1•iamnothere•1m ago•0 comments

The Tokio/Rayon Trap and Why Async/Await Fails Concurrency

https://pmbanugo.me/blog/why-async-await-complect-concurrency
1•LAC-Tech•2m ago•0 comments

Landscape of Consciousness

https://loc.closertotruth.com/
1•momentmaker•5m ago•0 comments

Zureka: A way forward to solving the thorniest issues in quantum mechanics

https://deivondrago.substack.com/p/zureka-a-way-forward-to-solving-the
1•bryan0•9m ago•0 comments

American A.I. Companies Say Chinese Copycats Are Quickly Catching Up

https://www.nytimes.com/2026/07/06/technology/ai-distillation-china.html
1•bookofjoe•9m ago•1 comments

A few tips from the (startup) trenches for managing stress

https://vishal.rs/essay/habits-that-will-keep-the-stress-under-control
1•vishalontheline•15m ago•0 comments

Kilo Code has been acquired by Anaconda

https://www.anaconda.com/blog/anaconda-acquires-kilo-code
1•doanbactam•15m ago•0 comments

Q-Day is coming, and it might break the internet

https://www.rnz.co.nz/news/world/724214/q-day-is-coming-and-it-might-break-the-entire-internet
3•billybuckwheat•17m ago•0 comments

Neanderthals, modern humans may have shared culture 59,000 years ago in Turkey

https://www.livescience.com/archaeology/neanderthals/modern-humans-and-neanderthals-may-have-shar...
3•gmays•25m ago•0 comments

AI-generated women are spreading disinformation about Singapore on TikTok

https://www.channelnewsasia.com/singapore/tiktok-ai-women-disinformation-deepfake-presenters-6250271
4•gnabgib•28m ago•0 comments

'We decided not to limit VPNs': UK government U-turns on age-gating VPNs

https://www.techradar.com/vpn/vpn-privacy-security/we-decided-not-to-limit-vpns-uk-government-u-t...
3•iamnothere•29m ago•1 comments

When the Wildfires Rage, Who Gets to Breathe First?

https://indigenousinsider.substack.com/p/when-the-wildfires-rage-who-gets
1•indigodaddy•30m ago•0 comments

Moe P. Wellington

https://objkt.com/users/tz1YdveLn8id6Wk9X2JGsWsJj7qZodJ1XsKT/created
1•gdss•33m ago•0 comments

Show HN: I made a local image compressor to save you from popups andsubscription

https://compressor.conutil.com
2•mahmedalam•35m ago•1 comments

Wrote a tiny version of argp for CLI parsing in embedded environments

https://github.com/zkwinkle/tiny_argp
1•zkwinkle•40m ago•1 comments

Show HN: A cross-platform app for meeting notes and items that don't get lost

https://github.com/kestermckinney/ProjectNotes
1•kestermckinney•47m ago•0 comments

Bluesky Trademarks ATProto

https://atproto.com/blog/at-protocol-trademark
2•chaosharmonic•47m ago•0 comments

Cybernetic Culture Research Unit Archive

https://ccru.is-lost.org/
1•snorbleck•49m ago•0 comments

Tlbic: A localized, non-speculative basic income for societal resilience

https://drive.google.com/file/d/1BzNLajzFjxUTD3Xmr6NhiDblBz4XUGeY/view?usp=drive_link
2•michikawa59•54m ago•5 comments

Ask HN: Is anyone else feeling bad about Reddit's mechanisms

1•SmolSpideritito•56m ago•3 comments

History of Web Hosting

https://history-of-webhosting.exe.xyz
1•indigodaddy•59m ago•0 comments

A Gang of Thieves Pulled Off a Multimillion-Dollar Data Center Heist

https://www.nytimes.com/2026/07/12/magazine/data-center-heist.html
3•tysone•1h ago•0 comments

Performing live migrations of VMs at scale

https://www.sailresearch.com/blog/performing-live-migrations-of-massive-vms-at-scale
1•patrickdevivo•1h ago•0 comments

Telemedicina Para Venezuela

https://latydo.com/
2•latydo_33•1h ago•0 comments

Ban on broadcasting: EU Court clarifies that it also applies to free websites

https://www.eunews.it/en/2026/07/02/ban-on-broadcasting-russia-today-the-eu-court-clarifies-that-...
1•jruohonen•1h ago•0 comments

ArcBrush 1.5 – Node-based image editor (OCIO, OpenEXR, 97 nodes)

https://arcbrush.com/press/arcbrush-1-5/
2•albiabia•1h ago•0 comments

Syncthing for Dotfiles: Sync vs. Manage

https://sumguy.com/syncthing-for-dotfiles/
1•twp•1h ago•0 comments

Manual Work Is a Bug

https://queue.acm.org/detail.cfm?id=3197520
4•Anon84•1h ago•1 comments

Rethinking the Evaluation of Harness Evolution for Agents

https://arxiv.org/abs/2607.12227
3•Anon84•1h ago•0 comments

Generative AI is an Engineering Disaster

https://www.theatlantic.com/technology/2026/07/generative-ai-engineering-disaster/687901/
4•mizzao•1h ago•1 comments
Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.