frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

Beta SDKs for the 2026-07-28 MCP Spec Release Candidate Are Here

https://blog.modelcontextprotocol.io/posts/sdk-betas-2026-07-28/
1•BrianPeek•1m ago•0 comments

WyrmRSS: A modern RSS reader and aggregator

https://github.com/kryoseu/WyrmRSS
1•kryoseu•1m ago•1 comments

FOMO Is the Cyberpsychosis of the AI Era

https://blog.akring.com/posts/fomo-is-the-cyberpsychosis-of-the-ai-era/
1•__natty__•2m ago•0 comments

Lake Powell Is Already Dead. They Just Won't Admit It. [video][22 Mins]

https://www.youtube.com/watch?v=wbdaSdrxUao
2•Bender•5m ago•0 comments

CyberWatch – Cybersecurity news and learning for everyone

https://cyberwatch-fc59b5.netlify.app/
1•KrishnaBozza•6m ago•0 comments

Paranoia: An automatic chaos engineering tool for Spring

https://github.com/MartinesEmanuel/ParanoiaEngine
1•SchwKatze•7m ago•0 comments

Will humans one day talk to animals? This scientist is bringing us closer

https://www.yahoo.com/news/science/articles/humans-one-day-talk-animals-200000105.html
1•gmays•9m ago•1 comments

Adding Features Without Interrupting Network Connections

https://blog.exe.dev/adding-features-without-interrupting-network-connections
1•anitil•10m ago•1 comments

How sound art is repurposing Philly's Village of Industry and Art

https://design-milk.com/historic-philadelphia-building-public-sound-installation/
1•whiteblossom•11m ago•0 comments

Ask HN: Line by Line Agentic Coding

3•notshore•14m ago•0 comments

You can get Unicode working on DOS

https://twitter.com/i/status/2071469740141224272
2•vkaku•14m ago•2 comments

Unaccountable Systems

https://whynothugo.nl/journal/2025/09/12/unaccountable-systems/
2•foxfired•15m ago•0 comments

What happened to BitTorrent's Project Maelstrom web browser?

https://www.ctrl.blog/entry/bittorrent-maelstrom.html
2•ValdikSS•16m ago•0 comments

Weak hands and blurry vision: Is your tech giving you 'phone body'?

https://www.bbc.com/future/article/20260630-is-your-tech-giving-you-phone-body
2•dabinat•17m ago•0 comments

Show HN: Toolnexus for Python – MCP, agent skills,a2a for any LLM

https://pypi.org/project/toolnexus/
2•muthuishere•22m ago•0 comments

Oracle outlines all the ways it could lose the farm it bet on AI

https://www.theregister.com/ai-and-ml/2026/07/01/oracle-outlines-all-the-ways-it-could-lose-the-f...
2•Bender•24m ago•0 comments

I'm opening VSCode less and less every day

3•othmanosx•25m ago•0 comments

Show HN: Banto – Turn any topic into a live game room in minutes

https://banto.tv
2•douglaspham•27m ago•0 comments

Red teamers turned Claude Desktop into a double agent to do their evil bidding

https://www.theregister.com/security/2026/07/01/red-teamers-turned-claude-desktop-into-a-double-a...
2•Bender•29m ago•0 comments

Filtering music and speech in YouTube videos to isolate the car engine audio

https://adamsohn.com/separate/
2•dataviz1000•29m ago•0 comments

Russia approved secret China military training at top level, sources say

https://www.reuters.com/business/aerospace-defense/russia-approved-secret-china-military-training...
6•cwwc•32m ago•0 comments

Healthy but Sedentary People Show Early Decline in Cellular Energy Production

https://news.cuanschutz.edu/news-stories/healthy-but-sedentary-individuals-show-early-decline-in-...
9•littlexsparkee•33m ago•1 comments

US feds are actively hiring "person who decides which models to ban"

https://www.usajobs.gov/job/856265200
40•arm32•36m ago•22 comments

Finding a Needle in the Haystack: Querying Physical AI Data with Daft

https://www.eventual.ai/blog/egodex-scenario-search
2•sammysidhu•37m ago•0 comments

Show HN: Shark Tank but you pitch your idea to indie hackers

https://indiesharktank.vercel.app/
2•roozka10•38m ago•0 comments

Weird Al declined 'a nice pile of money' to star in AI ad

https://www.avclub.com/weird-al-yankovic-ai-commercial-exit
4•jimt1234•41m ago•0 comments

I put Claude Code on my Garmin running watch

https://github.com/fashton28/garmin-code
2•fashton28•42m ago•2 comments

The Underhanded C Contest

https://underhanded-c.org/
12•ccabraldev•42m ago•2 comments

Motte-and-Bailey Fallacy

https://en.wikipedia.org/wiki/Motte-and-bailey_fallacy
2•chistev•46m ago•0 comments

Break any AI scam phone call in just a few easy steps [video]

https://www.youtube.com/watch?v=lk3jCuITwcE
2•akavel•48m ago•0 comments