frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

CVV Checker – Real-time card verification via zero-dollar bank auth

https://cvvchecker.org
1•hurtzbergcc•1m ago•0 comments

Meirro Pro Display, 32" 6K Retina-class, Full Aluminum, anyone heard of them?

https://www.meirro.com
1•lisovin•2m ago•1 comments

Skillsaw: Lints the files that steer your AI coding agents

https://skillsaw.org/
2•sea-gold•5m ago•0 comments

Codex Agents Built and Operate My Weapons Research

https://weaponsofconflict.com/blog/codex-agents-weaponsofconflict-experiment
1•Politely1527•9m ago•0 comments

The feature in OxCaml that more languages should steal

https://theconsensus.dev/p/2026/06/27/the-feature-in-oxcaml-more-languages-should-steal.html
1•eatonphil•10m ago•0 comments

Show HN: Verbum Vitae – Bible memorization with spaced repetition

https://vvitae.com/
1•pseudocharles•11m ago•0 comments

Notion pulled itself back from the brink of failure (2019)

https://www.figma.com/blog/design-on-a-deadline-how-notion-pulled-itself-back-from-the-brink-of-f...
1•downbad_•11m ago•0 comments

Food for Agile Thought 551: AI Confidence Theater, We Tried Agile; Didn't Work

https://age-of-product.com/food-agile-thought-551-ai-confidence-theater/
1•swolpers•19m ago•0 comments

AdaptHealth says attackers stole patient data

https://www.theregister.com/security/2026/07/03/adapthealth-crooks-stole-our-passwords-patient-he...
1•Bender•21m ago•0 comments

2-Click Remote Code Execution in Meccha Chameleon

https://khaelkugler.com/blogs/meccha_chameleon.html
1•tester457•22m ago•0 comments

The Life and Times of Maxis, Part 1: SimEverything

https://www.filfre.net/2026/07/the-life-and-times-of-maxis-part-1-simeverything/
2•doppp•22m ago•0 comments

How the Summer of Atomic Bomb Testing Turned the Bikini into a Phenomenon

https://www.smithsonianmag.com/smithsonian-institution/how-wake-testing-atomic-bomb-bikini-became...
1•thunderbong•22m ago•1 comments

Ask HN: Possible issue impacting AWS Cloudwatch logs availability?

1•merek•22m ago•0 comments

Dev says Google warned him about account hijack then charged him $11,000 anyway

https://www.theregister.com/cyber-crime/2026/07/03/dev-says-google-warned-him-about-account-hijac...
2•Bender•23m ago•0 comments

Show HN: IDE for code assembly of reusable code blocks

https://tetrees.ai/download
1•joseph3553•23m ago•2 comments

H-1B Visas Skyrocket Despite Trump Admin Crackdown

https://www.newsweek.com/h-1b-visas-skyrocket-despite-trump-admin-crackdown-12154338
3•pseudolus•24m ago•0 comments

Show HN: Donation Tracker

https://github.com/padolph/donation-tracker
1•padolph•25m ago•0 comments

I stopped using a split keyboard

https://parsam.io/split/
1•pzrsa•25m ago•0 comments

Example prompt orchestrations to navigate complicated multi-step workflows

https://graphthinking.blogspot.com/2026/07/example-scaffolds-for-ai-prompt.html
1•physicsgraph•26m ago•0 comments

60% Fable cost cut by converting code to images and having the model OCR it

https://github.com/teamchong/pxpipe
2•dimitropoulos•27m ago•1 comments

Mesh Welding and Repair for 3D Printing

https://chris786525.substack.com/p/mesh-welding-and-repair-for-3d-printing
2•docjojo•28m ago•0 comments

Open Standard unveils dollar stablecoin backed by Visa and Mastercard

https://www.electronicpaymentsinternational.com/news/open-standard-unveils-dollar-stablecoin/
1•wslh•29m ago•0 comments

The Other Kind of Digital Garden

https://thelinell.com/posts/2026/digital_garden/
1•Linell•31m ago•0 comments

AI Agent ransomware attack through Langflow instance by exploiting CVE-2025-3248

https://www.sysdig.com/blog/jadepuffer-agentic-ransomware-for-automated-database-extortion
1•smurda•31m ago•0 comments

Ask HN: How to delete Hacker News profile?

1•Lapsa•32m ago•2 comments

Show HN: Hacker News but as Tweets

https://hackernews-reader.pages.dev/
1•ashu1461•33m ago•0 comments

The Amazon SES alternative for developers – MailKite

https://mailkite.dev/blog/amazon-ses-alternative/
2•bucabay•33m ago•0 comments

Show HN: Ultracodex – Run Claude Ultracode Dynamic Workflows with Codex Agents

https://github.com/YuanpingSong/ultracodex
1•yuansong•33m ago•0 comments

Learning to Replicate Expert Judgment in Financial Tasks

https://thinkingmachines.ai/news/learning-to-replicate-expert-judgment-in-financial-tasks/
1•skogstokig•35m ago•0 comments

Markets are competitive if and only if P = NP

https://arxiv.org/abs/2602.20415
56•kscarlet•36m ago•27 comments