frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: AgentShield SDK – Runtime security for agentic AI applications

https://pypi.org/project/agentshield-sdk/
2•iamsanjayk•1y ago
Hi HN,

We built AgentShield, a Python SDK and CLI to add a security checkpoint for AI agents before they perform potentially risky actions like external API calls or executing generated code.

Problem: Agents calling arbitrary URLs or running unchecked code can lead to data leaks, SSRF, system damage, etc.

Solution: AgentShield intercepts these actions:

- guarded_get(url=...): Checks URL against policies (block internal IPs, HTTP, etc.) before making the request.

- safe_execute(code_snippet=...): Checks code for risky patterns (os import, eval, file access, etc.) before execution.

It works via a simple API call to evaluate the action against configurable security policies. It includes default policies for common risks.

Get Started:

Install: pip install agentshield-sdk

Get API Key (CLI): agentshield keys create

Use in Python: from agentshield_sdk import AgentShield # shield = AgentShield(api_key=...) # await shield.guarded_get(url=...) # await shield.safe_execute(code_snippet=...)

Full details, documentation, and the complete README are at <https://pypi.org/project/agentshield-sdk/>

We built this because securing agent interactions felt crucial as they become more capable. It's still early days, and we'd love to get your feedback on the approach, usability, and policies.

Comments

subhampramanik•1y ago
Looks interesting -- Does it work like a wrapper on top of OpenAI specs? Like, can we just replace the OpenAI package with this, and it's fully integrated?
iamsanjayk•1y ago
Hey, thanks for asking! Good question.

AgentShield isn't a wrapper around the OpenAI package, so you wouldn't replace openai with it. Think of AgentShield as a separate safety check you call just before your agent actually tries to run a specific risky action.

So, you'd still use the openai library as normal to get your response (like a URL to call or code to run). Then, before you actually use httpx/requests to call that URL, or exec() to run the code, you'd quickly check it with shield.guarded_get(the_url) or shield.safe_execute(the_code).

Currently, It focuses on securing the action itself (the URL, the code snippet) rather than wrapping the LLM call that generated it.

Localghost. A little ghost to help you NPM dev

https://hamedb89.github.io/localghost/
1•hamedbahrami•2m ago•1 comments

The Secret Sabotage Behind Your Worst DOS-to-Windows Memories

https://comuniq.xyz/post?t=1377
1•01-_-•3m ago•0 comments

Show HN: BastionRoute – An outbound-initiated WebSocket relay fabric for UDP

https://github.com/klauscam/BastionRoute
1•klauscam•8m ago•0 comments

SensorFM: Towards a general intelligence and interface for wearable health data

https://research.google/blog/sensorfm-towards-a-general-intelligence-and-interface-for-wearable-h...
1•NathaP•9m ago•0 comments

TrainRouter – 601 of the great train routes on one interactive map

https://trainrouter.com/
1•Flightmussy•11m ago•0 comments

Let's build a simple interpreter for APL – part 1

https://mathspp.com/blog/lsbasi-apl-part1
1•mpweiher•11m ago•0 comments

Jelly Burn ReviEwS (2026): We Tried It My Honest Review

https://gamma.app/embed/Jelly-Burn-ReviEwS-2026-We-Tried-It-My-Honest-Review-zdv1p21lknjv1x0
1•taryhanz•12m ago•0 comments

Optimizing Database Performance: Tips and Tricks for Faster Web Applications

https://techreviewer.co/blog/optimizing-database-performance-tips-and-tricks-for-faster-web-appli...
1•adithyaharish•18m ago•0 comments

Browser Fingerprinting – How websites track you across internet –without cookies

https://mysysinfo.com/blog/what-is-browser-fingerprinting
2•hackstar•20m ago•0 comments

The Price of Palantir's Politics

https://www.ft.com/content/21038b20-646e-4773-a473-110c2d62ab15
3•pretext•21m ago•1 comments

Hackers Use Fake Emergency Requests to Steal Data from Apple, Meta and Others

https://www.bitdefender.com/en-us/blog/hotforsecurity/hackers-use-fake-emergency-requests-to-stea...
1•throw_await•21m ago•0 comments

ADDing agent-context annotations for existing API specs

https://github.com/norbert-walter/ai-device-description-add/
1•s03nk3•22m ago•0 comments

Your ’App’ Could Have Been a Webpage (so I fixed it for you)

https://danq.me/2026/07/09/your-app-could-have-been-a-webpage/
2•robin_reala•22m ago•0 comments

Observing oscillations, flares and tornados on the sun

https://phys.org/news/2026-07-oscillations-flares-tornados-sun.html
1•rbanffy•26m ago•0 comments

Harbor: Evaluate agents in sandboxed environments

https://www.harborframework.com/
1•pramodbiligiri•32m ago•0 comments

Show HN: Musing Image

https://musingimage.com/
1•sebjones•33m ago•0 comments

Swift's blockchain ledger ready for use

https://www.swift.com/news-events/press-releases/swifts-blockchain-ledger-ready-use-17-banks-set-...
1•ivell•34m ago•0 comments

Show HN: Proton – A pure Go GUI library with zero CGO dependencies

2•CzaxTanmay•36m ago•1 comments

Why LLMs get dates and times wrong (and how to fix it)

https://www.cronofy.com/blog/why-llms-get-dates-and-times-wrong
1•gshutler•37m ago•0 comments

Meta agentic model Muse Spark 1.1

https://twitter.com/finkd/status/2075218444056707458
1•ramshanker•38m ago•0 comments

From ETL, ELT, EtLT to agent-driven data engineering with Apache SeaTunnel

https://seatunnel.apache.org/blog/from-etl-elt-etlt-to-agent/
1•luckypeter•43m ago•0 comments

Show HN: AI Humanizer – Rewrite AI text into natural copy

https://ai-humanizer.space/
1•oliviamy•47m ago•0 comments

Show HN: Makoto the Claude Code plugin that keeps the AI honest

https://github.com/Clear-Sights/Makoto
1•Present_Flow•56m ago•0 comments

Long March-10B first landing [video]

https://www.youtube.com/watch?v=x9XDsiG40Uk
3•whwhyb•59m ago•1 comments

NeverDeliver, a fake online shop for the dopamine hit without the spending

https://never-deliver-shop.vercel.app
1•truffleMaestro•1h ago•0 comments

Whitegoods that aren't, but should be

https://www.rubenerd.au/whitegoods-that-arent-but-should-be/
1•Tomte•1h ago•0 comments

QR and Barcode Scanner

https://play.google.com/store/apps/details?id=com.qrcode.scanner.barcode.reader.qr.generator&hl=e...
1•karlnelsone•1h ago•1 comments

China may restrict foreign access to Chinese open-source AI models

https://www.reuters.com/technology/artificial-intelligence/china-weighs-silicon-curtain-around-so...
31•crowd51•1h ago•0 comments

Can AI Answer the $3T Question?

https://techcrunch.com/2026/07/09/can-ai-answer-the-3-trillion-question/
1•mjs06•1h ago•0 comments

The Future of Meta Superintelligence: A 1 Year Progress Update

https://newsletter.semianalysis.com/p/the-future-of-meta-superintelligence
1•mji•1h ago•0 comments