frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

Show HN: Runtime security enforcement and capability scoping for agents

https://www.clayseal.com
2•pberlizov•1h ago
Hi everyone. We're AI researchers at Harvard and Carnegie Mellon working on a project to advance the state of agent security. Currently, many systems rely on static sandboxing, which in long-running sessions enables agents to understand the safeguards holding them in place and break out of them. We've found vulnerabilities across over a dozen agent providers and frameworks (practically every one we tested) displaying this behavior (eg. a model fraudulently splitting payments to avoid a company-set payment limit, multi-model agent teams infecting each with injections, MCP rug pulls, etc).

We've developed an architecture that does two things: 1) instead of setting a sandbox for a session and leaving it in place, dynamically scoping the sandbox to cover the minimum subset of capabilities and file accesses that are needed for solving a particular problem set by the user, and continuously moving that sandbox to be in line with what the user wants. Think of this as, instead of a large stationary box, being a smaller, faster, moving container around the agent; 2) monitoring strictly speaking benign behavior (accepted tool calls, accepted file access) for suspicious behavior, borrowing techniques my partner and I developed in AML research. Together, those components have been able to mitigate almost every common attack class against models that we've evaluated so far.

Our system has performed very well on open benchmarks and data we've been able to evaluate it on, but our goal is to evaluate it on production data. We hope to release a paper/open-source project as an output of this, but really need production data to verify that our method works as well on real production data as it does on open benchmarks.

If you're interested in testing it, we'd love it if you signed up for our waitlist.

Thank you, and hope to hear from you!

Show HN: I ran 70 MCP servers in a sandbox and logged what they do

https://github.com/BhaveshThapar/mcp-audit
1•bthapar•1m ago•0 comments

Creatine doesn't just build muscle. It may also help fight cancer

https://www.sciencedaily.com/releases/2026/07/260701015237.htm
4•Jimmc414•3m ago•1 comments

Tripping on Acid

https://scotmurphy.com/2026/07/08/tripping-on-acid/
1•tekjess•5m ago•1 comments

Policy Statement Concerning the Suppression of Accuracy in AI Systems

https://www.federalregister.gov/documents/2026/07/07/2026-13628/policy-statement-concerning-the-s...
3•sebastian_z•12m ago•0 comments

A Fleet, Not an Assistant

https://bartkolendowski.com/writing/a-fleet-not-an-assistant.html
1•riskcomplex•12m ago•0 comments

Show HN: A shallow lake's report on itself

https://ashallowlake.com/
1•tough•13m ago•0 comments

A Roomba recorded a woman on the toilet. How did screenshots end up on Facebook?

https://www.technologyreview.com/2022/12/19/1065306/roomba-irobot-robot-vacuums-artificial-intell...
3•rmason•17m ago•0 comments

Understanding ECS from Kubernetes Perspective

https://muhammadraza.me/2026/ecs-explained-visually/
4•mraza007•22m ago•0 comments

How to Be a Good open-source Maintainer

https://piechowski.io/post/how-to-be-a-good-open-source-maintainer/
3•grepsedawk•24m ago•0 comments

Show HN: Yaw – digital logbook for glider pilots

https://yawflight.com/
2•mantcz•26m ago•0 comments

Native-speed vLLM transformers modeling back end

https://huggingface.co/blog/native-speed-vllm-transformers-backend
2•simonpure•29m ago•0 comments

Google Vibe Coding vs. Agentic Engineering White Paper

https://www.kaggle.com/whitepaper-the-new-SDLC-with-vibe-coding
2•grepsedawk•29m ago•0 comments

Show HN: A tool that checks how your business appears in AI search

https://www.tryagentscore.com
2•nikhilsiyer•30m ago•1 comments

Every Way Meta Tracks You, and How to Stop It [video]

https://www.youtube.com/watch?v=Yv2Eb_kJous
2•nalekberov•34m ago•0 comments

DSS Code Prime

https://github.com/dailysoftwaresystems/dss-code-prime
2•rgasperetti•34m ago•0 comments

Are Argentina being treated favourably at World Cup?

https://www.bbc.co.uk/sport/football/articles/cx2wkwd7e6go
2•password54321•36m ago•0 comments

Show HN: Day planner shaped like a clock (2-way calendar and Todoist sync)

https://reassign.app
1•smuk3c•36m ago•0 comments

Adsb.fi

https://adsb.fi/
2•rolph•36m ago•0 comments

Lessons from the Vasa Shipwreck

https://www.ft.com/content/200a6c44-9b66-4af3-82eb-98acb53898e4
1•bookofjoe•38m ago•1 comments

'Acceleration without fuel:' superconducting thruster in first orbital test

https://www.space.com/technology/acceleration-without-fuel-revolutionary-superconducting-thruster...
1•breve•41m ago•1 comments

Remote sync, MCP, and an API for your Obsidian vault

https://github.com/8thpark/geode
2•pmihaylov•44m ago•0 comments

The neutral proof standard for consequential AI-agent actions

https://github.com/Actenon
1•Bucko1•46m ago•0 comments

How much and why ACA Marketplace premiums are going up in 2027

https://www.healthsystemtracker.org/brief/how-much-and-why-aca-marketplace-premiums-are-going-up-...
2•LostMyLogin•47m ago•0 comments

A Treatise on How to Use the Internet Without Committing Philosophical Suicide

https://pastebin.com/Ft7P5m9F
1•jxmorris12•52m ago•0 comments

North Korean Hackers Compromise Go and PHP Packages

https://opensourcemalware.com/blog/polinrider-jumps-the-fence
4•6mile•55m ago•1 comments

Rewriting Bun in Rust

https://bun.com/blog/bun-in-rust
51•afturner•55m ago•8 comments

Show HN: Screenstab (tilt-shift-style screenshots) is now free and open source

2•mikaelaast•58m ago•0 comments

CrowdSound: A Song Composed Anonymously by the Internet

https://web.archive.org/web/20191208165423/https://crowdsound.net/lyrics
2•Jomal_HN•1h ago•0 comments

Open Source Barware: free, local-first bar inventory software (GPLv3)

https://opensourcebarware.com
4•RichBJamison•1h ago•0 comments

Apple's AWDL causing periodic 90ms ping on LAN

https://twitter.com/tomaskafka/status/2074963014596366670
2•tomaskafka•1h ago•0 comments