frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Show HN: Raypher–eBPF-based runtime security and hardware identity for AI agents

https://github.com/kidigapeet/Raypher-core
2•Kidiga•2h ago
Hey HN,

I’m the founder of Raypher . We are building a kernel-level execution guard and cryptographic identity layer specifically designed for autonomous AI agents(opencalw). curent AI agents(open claw) are big security risks our Mission is to make a security feture that will enable developers to make agents and ship them faster without worrying about security risks The Problem: Right now, the agentic ecosystem (OpenClaw, LangChain, MCPs) is giving LLMs "hands" with almost zero runtime boundaries. Legacy cybersecurity tools are completely failing here for two reasons:

API Latency: They rely on API polling to check if an agent's SaaS integration is misconfigured. If an agent enters an infinite loop and hallucinates a command to drop a production database, a 2-second API polling delay is an eternity.

Identity Fallacy: They use software tokens (OAuth/API keys) to track agent identity. If an attacker tricks an agent into leaking its config.json, the attacker becomes the agent.

How Raypher Works: We realized securing probabilistic AI required moving out of the application layer and into the OS kernel.

The eBPF Network Guillotine: We run a lightweight Rust daemon locally that hooks into the Linux kernel via eBPF. We don’t poll logs. We intercept the system calls and network sockets. If an agent violates its policy.yaml (e.g., trying to access a restricted subnet or execute rm -rf), we drop the veth packet in microseconds before it leaves the machine.

Silicon-Bound Identity (TPM): We bind the agent’s cryptographic identity directly to the physical hardware (TPM 2.0 on motherboards or AWS Nitro Enclaves). You cannot phish or copy-paste silicon.

Zero Latency (IBEV): Security tools that require a cloud round-trip kill agent performance. We built "Intent-Bound Ephemeral Visas" (IBEV) using gRPC ring buffers. The agent mints its permission visa locally and offline. If our cloud goes down, your agents keep running safely on the cached policy.

Raypher gives you a local dashboard to track exactly what your agents are doing and hard-caps their OpenAI API spend so a rogue loop doesn't bankrupt you.

I’d love to hear your thoughts on our eBPF architecture, how we are handling the TPM attestation, or just the state of AI agent security in general. I’ll be in the comments all day to answer technical questions!

Comments

Kidiga•2h ago
would any developer want this?

Visualize Your Turborepo Workspace

https://turbograph.dev/
1•kuzeykose•47s ago•0 comments

Shai-Hulud-Style NPM Worm Hijacks CI Workflows and Poisons AI Toolchains

https://socket.dev/blog/sandworm-mode-npm-worm-ai-toolchain-poisoning
2•jicea•1m ago•0 comments

Show HN: Formally Verified a Millennium Prize Problem in Coq Yang-Mills Mass Gap

https://github.com/Shariq81/yang-mills-mass-gap
1•shariq81•2m ago•0 comments

Trump says he'll raise tariffs to 15 percent after Supreme Court ruling

https://apnews.com/article/trump-tariff-truth-social-872c8f04112a8991d8aa6ae5005767b6
2•_rend•4m ago•1 comments

Apple's Ferret AI model is a step towards Siri seeing and controlling apps

https://appleinsider.com/articles/26/02/21/apples-latest-ferret-ai-model-is-a-step-towards-siri-s...
1•geox•4m ago•0 comments

ClipSafe

https://clipsafe.app/blog/rss.xml
1•mcunderground•5m ago•1 comments

Show HN: Here.now – Web Hosting for Agents

https://here.now/
1•k0mplex•6m ago•0 comments

When a Platform Stops Saying "Automation" and Starts Saying "LLM"

1•ppolicyco•6m ago•0 comments

Wrapping Code Comments

https://matklad.github.io/2026/02/21/wrapping-code-comments.html
1•surprisetalk•7m ago•0 comments

I'm 15 and built a platform for developers to showcase WIP projects

1•amin2011•7m ago•0 comments

Show HN: Cc-md – Zero-cost Obsidian sync across iPhone, Mac, and GitHub

https://github.com/yuukiLike/cc-md
1•YuukiJyoudai•7m ago•0 comments

Stanford study points to vaccine that protects against multiple infections

https://www.nbcbayarea.com/news/local/stanford-study-vaccine-multiple-infections/4039740/
1•apparent•8m ago•0 comments

Show HN: Amux – A tmux-based multiplexer for running parallel Claude Code agents

https://amux.io
1•Beefin•8m ago•0 comments

SQLite-Vector: highly efficient vector extension for SQLite

https://github.com/sqliteai/sqlite-vector
1•marcobambini•8m ago•0 comments

Show HN: Museum of Handwritten Code (If, While, Binary Search, Merge Sort)

https://museum.codes
2•sgraphics8•12m ago•0 comments

Forever – Claude Memory System

https://forever.squidcode.com
1•pro_methe5•12m ago•2 comments

Show HN: StackWho – Find companies by tech stack with decision maker contacts

https://stackwho.com/
1•veritas9•13m ago•0 comments

Museum Excavation in Cologne Finds Ancient Roman Governor's Palace and Basilica

https://allthatsinteresting.com/cologne-germany-ancient-roman-ruins
2•bookofjoe•13m ago•1 comments

Show HN: Trying to make sense of the OpenClaw chaos with one feed

https://www.lobstersauce.news/
1•Tjerkienator•17m ago•0 comments

A Practical Guide to Getting Productive with Claude Code

https://onebytepls.com/articles/copilot-to-coworker-agent-driven-development/
1•dechiad•20m ago•0 comments

Breast imaging with ultra-low field MRI

https://www.nature.com/articles/s41598-026-37130-9
2•PaulHoule•22m ago•0 comments

Show HN: DevBind – I made a Rust tool for zero-config local HTTPS and DNS

https://github.com/Its-Satyajit/dev-bind
1•its-satyajit•23m ago•0 comments

Mathematics in the Library of Babel

https://www.daniellitt.com/blog/2026/2/20/mathematics-in-the-library-of-babel
1•robinhouston•23m ago•0 comments

H-1B Visas and the AI Race

https://www.wsj.com/opinion/h-1b-visas-artificial-intelligence-jobs-immigration-economy-nfap-repo...
1•johntfella•24m ago•0 comments

Rhythms the Compendium: Life aboard an aircraft carrier (2021)

https://thelexicans.wordpress.com/2020/04/05/38223/
2•cwillu•26m ago•0 comments

Head of Claude Code: What happens after "coding is solved" [audio]

https://www.lennysnewsletter.com/p/head-of-claude-code-what-happens
1•ftchd•28m ago•2 comments

Aesthetics of single threading

https://ta.fo/aesthetics-of-single-threading/
2•todsacerdoti•28m ago•0 comments

MeshTNC is a tool for turning consumer grade LoRa radios into KISS TNC compatib

https://github.com/datapartyjs/MeshTNC
2•todsacerdoti•29m ago•0 comments

EDuke32 – Duke Nukem 3D (Open-Source)

https://www.eduke32.com/
7•reconnecting•32m ago•0 comments

Show HN: See – searchable JSON compression (offline 10-min demo)

https://gitlab.com/kodomonocch1/see_proto
3•Tetsuro•36m ago•0 comments