frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

LinguaHover – Hover Any Word, Translate Instantly – Chrome Extension

https://chromewebstore.google.com/detail/linguahover-translator-pr/dnkpfkopeeilpfgnehheceebamlcbcgc
1•titan_tokyo•1m ago•0 comments

Show HN: Mochi Analytics

https://www.mochianalytics.com
1•devtanna•3m ago•0 comments

Ask HN: Do you like your AI more than your coworker?

1•general_reveal•3m ago•0 comments

In the Weights

https://intheweights.com
1•dash2•5m ago•0 comments

Bounding the Blast Radius: A Survey of Prompt-Injection Defenses for LLM Agents

https://fabraix.com/blog/nobody-has-solved-prompt-injection
1•ibrahim_abdu777•6m ago•0 comments

What Happens When AI Agents Can Pay Their Own Bills

https://self-sovereign-agent.github.io/
1•_pdp_•11m ago•0 comments

Higher blood glucose levels linked to faster brain aging

https://medicalxpress.com/news/2026-07-higher-blood-glucose-linked-faster.html
1•XzetaU8•12m ago•0 comments

Supply Chain Attack Campaign PolinRider

https://socket.dev/supply-chain-attacks/polinrider
1•_____k•12m ago•0 comments

Poll: Is there an AI bubble?

1•networked•13m ago•0 comments

Generative AI without guardrail can harm learning:Evidence from high school math

https://www.pnas.org/doi/10.1073/pnas.2422633122
1•teleforce•14m ago•0 comments

Tribe in Colorado brings utility scale solar project online

https://www.npr.org/2026/07/06/nx-s1-5779756/despite-stiff-political-headwinds-tribe-in-colorado-...
2•geox•18m ago•0 comments

Claude Code deletes conversations after 30 days

1•mieubrisse•19m ago•0 comments

Adding Homemade TLS to a Homemade Web Server

https://www.dmytrohuz.com/p/adding-homemade-tls-to-a-homemade
1•dmyhuz•24m ago•0 comments

Euclid scientists discover most distant known quasars

https://www.euclid-ec.org/most-distant-quasars/
1•robin_reala•24m ago•0 comments

Ask HN: What is your go-to prompt to prove AI can be wrong?

1•throwaway_887•27m ago•0 comments

Ask HN: Do you guys struggle with finding a right person for your FDE role?

1•getelementbyiq•34m ago•0 comments

Experts offer advice on performing endurance events in excessive heat

https://news.northeastern.edu/2026/07/02/cycling-in-extreme-heat-tour-de-france/
1•ano-ther•35m ago•0 comments

Read Rust Like a Chinese Character

https://dawaba.pages.dev/writing/sometimes-read-rust-like-a-chinese-character/
1•saint-evan•36m ago•1 comments

A Self-Improving Code World Model Agent

https://jdsemrau.substack.com/p/a-self-improving-code-world-model
1•ph4rsikal•39m ago•0 comments

Show HN: Kiwi – Run agentic dev loops in the cloud, keep keys on your laptop

https://github.com/ibreakthecloud/kiwi
1•harshvkarn•40m ago•0 comments

Plex debuts 5-year membership pass for $250

https://arstechnica.com/gadgets/2026/07/250-used-to-get-you-a-lifetime-plex-pass-now-you-get-a-fi...
1•AndrewDucker•40m ago•0 comments

Australia prosecuting Amazon for unilaterally modifying Prime terms [video]

https://www.youtube.com/watch?v=DV2-GLJ2FnM
1•dataflow•42m ago•1 comments

Show HN: I built notion database based no code form builder

https://ndbforms.myurll.in/
1•nookeshkarri7•43m ago•0 comments

The Hitchhiker's Guide to Agentic AI

https://arxiv.org/abs/2606.24937
2•jonbaer•43m ago•0 comments

Show HN: TV Time to Serializd Importer

https://chromewebstore.google.com/detail/tv-time-→-serializd-impor/cpcfkgcidilfibakiaohbekkanlk...
1•Gooblebrai•44m ago•0 comments

your competitor is 10x better than you

https://www.mentionedby.world/
2•aykhanstoic•47m ago•1 comments

What else happened in 1776 [video]

https://www.youtube.com/watch?v=nGMCowI4exk
1•iansteyn•48m ago•0 comments

Venice AI becomes a unicorn with its privacy-first AI platform takes off

https://techcrunch.com/2026/07/01/venice-ai-becomes-a-unicorn-with-65m-series-a-as-its-privacy-fi...
2•felixdoerp•50m ago•0 comments

China fires ballistic missile into Pacific nuclear-free zone

https://www.ft.com/content/c52f0a98-2e6a-4acc-a668-d4ce442c4aba
2•cwwc•52m ago•0 comments

Roll your own file-based router in under 50 lines of code

https://wasp.sh/blog/2026/07/01/roll-your-own-file-based-router
1•cprecioso•53m ago•0 comments
Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.