frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

Storiesprout – Personalised bedtime stories for kids

https://storiesprout.com
1•stanleydupreez•6m ago•0 comments

The unsettling world of the 'TikTok Farlands'

https://www.bbc.com/future/article/20260618-the-terrifying-world-of-the-tiktok-farlands
1•1vuio0pswjnm7•6m ago•0 comments

Chinese proverb: If you want to be happy for an hour, take a nap

https://economictimes.indiatimes.com/news/international/us/chinese-proverb-of-the-day-if-you-want...
2•teleforce•6m ago•1 comments

Inference Optimization for MiMo v2.5: Pushing Hybrid SWA Efficiency to the Limit

https://mimo.xiaomi.com/blog/mimo-v2-5-inference
1•theanonymousone•7m ago•0 comments

Ask HN: If there would be millions of AI models in future

1•mzubairtahir•8m ago•0 comments

We Scaled PgBouncer to 4× Higher Throughput

https://clickhouse.com/blog/pgbouncer-clickhouse-managed-postgres
3•saisrirampur•11m ago•0 comments

Leave a failing test before you go on vacation

https://lukapeharda.com/article/leave-a-failing-test-before-you-go-on-vacation/
2•lukapeharda•15m ago•0 comments

The 'first' AI-run ransomware attack still needed a human

https://techcrunch.com/2026/07/06/the-first-ai-run-ransomware-attack-still-needed-a-human/
1•adithyaharish•16m ago•0 comments

I'm Building a Secure USB Drive That Hides Itself

https://rootkitlabs.com/2026/06/22/I%27m-Building-a-Secure-USB-Drive/
1•machinehum•27m ago•0 comments

200. milliseconds

https://200ms.thenodebook.com
3•thunderbong•31m ago•0 comments

Prompt Engineering Is Not Enough. Here Is How to Build Loop Engineering Instead

https://lightrains.com/blogs/prompt-engineering-to-loop-engineering/
1•niksmac•31m ago•1 comments

Selling to the Assistant

https://dmonn.com/selling-to-the-assistant/
1•dmonn•31m ago•0 comments

3D-Printed Micro Manipulator Can Achieve Accurate Sub-Micron Movement

https://www.hackster.io/news/this-3d-printed-micro-manipulator-can-achieve-accurate-sub-micron-mo...
1•robocat•32m ago•1 comments

How LLMs Work

https://arpitbhayani.me/blogs/how-llms-work/
1•aishwarydongre•33m ago•0 comments

I Built the Only 2026 WWII Jeep

https://www.theautopian.com/i-bet-my-company-on-an-impossible-jeep-build-then-a-miracle-happened/
2•martey•35m ago•0 comments

RAG

https://www.pinecone.io/learn/retrieval-augmented-generation/
1•kcxjbskxc•39m ago•0 comments

Show HN: Tune agents trained on public data to work better with your code

1•iamalizaidi•39m ago•0 comments

AI STS Stack for underserved languages paper

https://kamalg2.substack.com/p/choosing-a-real-time-voice-ai-stack
1•Internet_horse•42m ago•0 comments

What history tells us about the AI investment boom

https://www.fa-mag.com/news/what-history-tells-us-about-the-ai-investment-boom-87567.html
1•rwmj•42m ago•0 comments

Show HN: Build a Slack Agent

https://www.buildaslackagent.dev/
2•iacguy•43m ago•0 comments

Las Vegas Business Owner Sentenced to 15 Years for Tax Fraud Scheme (2009)

https://www.justice.gov/archive/usao/nv/news/2009/11162009.html
1•greyface-•45m ago•0 comments

Australian Insurance Brands – AI Search Ranks

https://somantra.ai/aeo-research/australia/insurance/may-2026
1•prasaar•49m ago•0 comments

Learning another language appears to slow brain ageing by up to 13 years

https://www.theguardian.com/education/2026/jul/06/learning-another-language-appears-to-slow-brain...
2•giuliomagnifico•51m ago•2 comments

Microsoft PhotoDNA flags users child sexual abusers on images containing a grid

https://twitter.com/tallcowyt/status/2073904860182008174
1•miohtama•53m ago•1 comments

The Art of Computer Programming by Donald E. Knuth

https://www-cs-faculty.stanford.edu/~knuth/taocp.html
4•archargelod•55m ago•0 comments

Every AI Company Needs a Context Graph. None of Them Need the Same One

https://hydradb.com/blog/ai-context-graph-ontology-infrastructure
2•manveerc•59m ago•0 comments

Show HN: FCS – an open protocol for splitting contributions in pre-company teams

https://github.com/zlaska/FCS
1•zlaska•59m ago•1 comments

Effect HTTP Recorder

https://github.com/anomalyco/effect-http-recorder
1•handfuloflight•1h ago•0 comments

Maestro: Agentic Mobile UI Testing

https://maestro.dev/
2•handfuloflight•1h ago•0 comments

GPTBot is the most blocked crawler among websites that get organic traffic

https://sitestatsdb.com/explore/blocked-bots
1•keywordian•1h ago•0 comments