frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

Ask HN: I've told everyone about my startup and its been harder than I thought

1•bunnybomb2•38s ago•0 comments

San Francisco orders Apple, Google to remove nudify apps from app stores

https://arstechnica.com/tech-policy/2026/07/apple-google-must-stop-profiting-off-ai-nudify-apps-s...
1•rbanffy•2m ago•0 comments

Not Holding Back the Ocean

https://ethanniser.dev/blog/not-holding-back-the-ocean/
1•tosh•8m ago•0 comments

There's a lot of hype around perimenopause. Don't buy it

https://www.technologyreview.com/2026/07/17/1140608/theres-a-lot-of-hype-around-perimenopause-don...
1•joozio•11m ago•0 comments

LLM Cliché Highlighter

https://tools.simonwillison.net/llm-cliche-highlighter
1•m_c•24m ago•0 comments

Can humans hibernate their way to Mars?

https://www.theguardian.com/science/ng-interactive/2026/jul/14/human-hibernation-space-mars
2•tosh•25m ago•0 comments

Agentic AI Is Taking over Execution, Not Just Content Generation

https://themarketingnewsletter.org/p/45-agentic-ai-is-taking-over-execution
1•thenewedrock•26m ago•1 comments

AI and Creativity

https://sunnyamrat.com/posts/2026-07-17-ai-creativity/
1•sunnyam•36m ago•0 comments

What Doom taught us about AI-assisted incident response

https://rootly.com/blog/what-doom-taught-us-about-ai-assisted-incident-response
1•DaWe01•37m ago•0 comments

Teamclaude rewrite in rust, run multiple Claude accounts in parllel

https://github.com/dhkts1/teamclaude-rs
1•dhkts1•37m ago•0 comments

Show HN: Find someone in the dark – light them or light yourself? (Three.js)

https://github.com/skorotkiewicz/signal-in-the-dark
3•modinfo•41m ago•0 comments

The Day I Accidentally Deleted Production

https://arpitbhayani.me/blogs/deleted-production/
2•dubeysatyam•45m ago•0 comments

Maze Bench

https://mazebench.com/
2•tosh•47m ago•0 comments

What Happened to Novell NetWare? Why the King of the Network Disappeared

https://www.youtube.com/watch?v=3NNbj1NoePI
2•cable2600•48m ago•0 comments

AgentGrove – local workspace for AI coding agents in Git worktrees

https://github.com/arnabk/agentgrove
2•arnabk•50m ago•0 comments

Labelled multi-dimensional arrays for representing research data

https://www.djmannion.net/data_nd/index.html
2•zetamax•50m ago•0 comments

I built a tool to prove a human reviewed an AI decision

https://caneni.net/
1•mbugay•51m ago•0 comments

Vice President Mispells « potato » (1992)

https://en.wikipedia.org/wiki/Dan_Quayle
1•jackhalford•52m ago•1 comments

Israeli ministers announce new illegal settlements in Gaza and West Bank

https://www.theguardian.com/world/2026/jul/18/israel-plan-new-illegal-settlements-gaza-west-bank-...
3•hebelehubele•53m ago•0 comments

The cost of saying yes has changed

https://github.blog/engineering/the-cost-of-saying-yes-has-changed/
2•e2e4•1h ago•1 comments

SigLIP 2 text embedding on CPU with Rust and ONNX

https://github.com/Hebbian-Robotics/siglip-onnx-server
1•kstonekuan•1h ago•0 comments

Elon Musk's Memphis AI empire is the epicenter of the data center backlash

https://www.cnbc.com/2026/07/16/elon-musk-memphis-ai-colossus-data-center.html
2•1vuio0pswjnm7•1h ago•0 comments

SpaceX stock has cratered nearly 23% since the company joined the Nasdaq-100

https://www.cnbc.com/2026/07/17/spacex-stock-starship-test-flight-aborted.html
2•1vuio0pswjnm7•1h ago•0 comments

The Java Story – The Official Documentary [video]

https://www.youtube.com/watch?v=ZqGSg4b_cZA
1•Tomte•1h ago•0 comments

US judge won't block Meta laying off workers who filed AI discrimination suit

https://www.reuters.com/business/world-at-work/us-judge-wont-block-meta-laying-off-workers-who-fi...
2•1vuio0pswjnm7•1h ago•0 comments

An Open Letter to A24 about Backrooms Copyright

https://backroomsmovie.com/2026/07/an-open-letter-to-a24-about-backrooms-copyright/
3•Tomte•1h ago•0 comments

Kimi K3 is the best performing model on Next.js evals

https://twitter.com/rauchg/status/2077900518404321759
1•tosh•1h ago•0 comments

Cicy-code – a local-first multi-agent coding workspace via npx

https://github.com/cicy-ai/cicy-code
2•cicyai•1h ago•0 comments

FluencyLoop – A lighter, developer-centric SpecKit alternative

https://github.com/baokhang83/fluencyloop
3•baokhang83•1h ago•0 comments

A stale-proof shared memory for coding agents

https://github.com/Hivemind-OSS/Hivemind
1•dowingard•1h ago•1 comments