frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

A Definitive Guide to Using BigQuery Efficiently (2024)

https://medium.com/data-science/burn-data-rather-than-money-with-bigquery-the-definitive-guide-1b...
1•rzk•1m ago•0 comments

A Magazine with One Subscriber

https://matthodges.com/posts/2026-07-12-personal-magazine-claude-codex/
1•m-hodges•3m ago•0 comments

Show HN: Instant icon search engine for open source icons

https://iconstash.io/
1•not_wowinter13•5m ago•0 comments

Show HN: VectorSim Tool for Visualizing DSP

https://vectorspin.dsp-coach.com/vector_spin.html#time=1,1,1,1,1,1,1,1&iq_mode=freq&update_time=2...
2•jason_s•7m ago•0 comments

Counterfeit People, Tools, and Kami

https://goodcomputer.substack.com/p/counterfeit-people-tools-and-kami
1•d9w•9m ago•0 comments

Postgres Query Observability from ClickHouse

https://github.com/ClickHouse/pg_stat_ch
1•saisrirampur•10m ago•0 comments

My journey to the microwave alternate timeline

https://malmesbury.substack.com/p/my-journey-to-the-microwave-alternate
2•Plasmoid•12m ago•0 comments

Show HN: I gave my AI coding agents a group chat (it's just a Git repo)

https://github.com/yonidavidson/agentcomm
2•yonidavidson•13m ago•0 comments

Theo de Raadt: "You've been smoking something mind altering" (2007)

https://marc.info/?l=openbsd-misc&m=119318909016582
2•turrini•13m ago•0 comments

An explanation of our search results

https://web.archive.org/web/20040612082405/https://www.google.com/explanation.html
3•abj908•14m ago•0 comments

Devs aren't maximizing what they can do with AI b/C they still look at the code

https://twitter.com/antirez/status/2076249566635085826
2•enraged_camel•15m ago•0 comments

How AWS S3 Is Built

https://www.youtube.com/watch?v=5vL6aCvgQXU
3•tcp_handshaker•17m ago•0 comments

Samsung is pushing users to train AI with their personal health data or lose it

https://www.howtogeek.com/samsung-health-requires-ai-training-consent/
3•croes•17m ago•0 comments

I advise against using Hermes Agent

https://bednars.me/blog/why-i-advise-against-using-hermes-agent
3•piotrbednarsalt•17m ago•1 comments

Repo-Slopscore: Detecting AI Contributions in Git Repositories via Commit

https://slopscan.ava.pet/
2•birdculture•18m ago•0 comments

Concerned about how companies will manage their cloud bill once agents dominate

2•abhijeet_gupte•19m ago•0 comments

TK, or the secret to effortless writing (2024)

https://atthis.link/blog/2024/49629.html
3•Tomte•20m ago•0 comments

How Discord Creates Insights from Trillions of Data Points (2021)

https://discord.com/blog/how-discord-creates-insights-from-trillions-of-data-points
3•rzk•20m ago•0 comments

Just Keep at It: A Decade at Mozilla

https://eqrion.net/ten-years-at-mozilla/
3•theanonymousone•20m ago•0 comments

A Review of the Wyze 5070 Thin Client

https://cheapskatesguide.org/articles/wyze-5070-review.html
2•worldofmatthew•21m ago•0 comments

Show HN: AI Photo Editor – Professional-Grade Image Editing with Text Prompts

https://www.aiphotoeditor.ai/
3•vtoolpro•22m ago•0 comments

Why study Diophantine equations?

https://hidden-phenomena.com/articles/modular
3•mb1699•25m ago•0 comments

A timing glitch was behind Telstra's nationwide outage

https://theconversation.com/a-timing-glitch-was-behind-telstras-nationwide-outage-it-points-to-a-...
2•throw0101a•29m ago•0 comments

After years of teasing, the viral Nopia synth is 'basically finished'

https://www.theverge.com/gadgets/964499/nopia-viral-synth-finished-price-release-demo
2•Brajeshwar•30m ago•0 comments

How to Read More Books

https://scotto.me/blog/2026-07-12-how-to-read-more-books/
4•silcoon•31m ago•0 comments

Show HN: Vigil – open-source TimeTracker with steroids

https://github.com/Brokenwatch24/vigil
2•jjaramillor•33m ago•0 comments

Croc: Securely transfer files and folders between two computers

https://github.com/schollz/croc/
2•gregsadetsky•34m ago•0 comments

Benchmarking Cloudflare Containers vs. AWS MicroVMs

https://v2.alchemy.run/blog/2026-07-01-microvm-cold-starts/
2•mariuz•34m ago•0 comments

Show HN: TrialPilot – clinical trials from your phone, built by a patient

2•thenerdhead•36m ago•2 comments

The Reverse Information Paradox

https://twitter.com/satyanadella/status/2076323181154230284
3•tosh•38m ago•0 comments