frontpage.

88% of orgs have had AI agent security incidents, yet MCP servers run broad OAuth scopes with no way to restrict per agent.

After reading about the GitHub MCP exploit I got tired of cobbling together OAuth + custom middleware + prayer. ScopeGate is a permission proxy that sits between your AI agents and external services (Google Drive, Gmail, Calendar, etc).

You connect a service via OAuth, define granular scopes per agent (read-only, specific folders, rate limits), and get a unique MCP endpoint. Agent A can read one Drive folder but not write. Agent B can send email but not read inbox. One click revokes access across all services instantly.

Open-core, self-hostable — same features on cloud and self-hosted.

Spectre I prevents smart devices and AI recorders from picking up your voice

Show HN: VideoEvaluator, a Video Comparison Tool

Show HN: AI tool that brutally roasts your AI agent ideas

Toyota Once Used a Fake Dining Room Set to Teach Execs How Big Americans Are

Show HN: Agent Action Protocol (AAP) – MCP got us started, but is insufficient

Deveillance Spectre I blocks smart devices and AI recorders

The Attention Tax

Attacks on GPS Spike Amid US and Israeli War on Iran

Show HN: The Nova: Evolution for Evolution's Sake

Justice Department Seeks to Reverse Course and Defend Law Firm Sanctions

Why MAGA suddenly loves solar power

Show HN: RUOK – Self-hosted personal OKR system with AI-powered analytics

Show HN: VibePod CLI – Run AI agents with isolation and better observability

Block's Jack Dorsey thinks AI can do 40% of his job

Show HN: A runtime authorization layer for AI agents

Bash Is Not Enough: Why Large-Scale CI Needs an Orchestrator

Why Your Company's Digital Sovereignty Is a House of Cards

Why Test Environments Fail and What Top Teams Do to Avoid the Chaos

Easterlin Paradox

Claude is an Electron App because we've lost native

Show HN: OculOS – Any desktop app as a JSON API via OS accessibility tree

Nvidia-backed Ayar Labs raises $500M at $3.75B valuation

Show HN: Xenith.ai – Web Assembly Based Voice Assistant with WebLLM/Whisper/VITS

Show HN: Embed a dedication page directly inside DRM-free EPUBs

Activist investor Elliott boosts stake in Pinterest by $1B

Accenture acquires Downdetector as part of $1.2B deal

Pour Your Soul In – An Ode to Engineering

Smee.io: Webhook payload delivery service

Google Chrome is switching to a two-week release cycle

'MacBook Neo' briefly appears on Apple's regulatory website

Show HN: ScopeGate – Granular permission gateway for AI agents (MCP, open-core)