Show HN: I built a "sudo" mechanism for AI agents

2•yaront111•2w ago

Hi HN, I’m Yaron, a DevOps engineer working on AI infrastructure.

I built Cordum because I saw a huge gap between "AI Demos" and "Production Safety." Everyone is building Agents, but no one wants to give them write-access to sensitive APIs (like refunds, database deletions, or server management).

The problem is that LLMs are probabilistic, but our infrastructure requires deterministic guarantees.

Cordum is an open-source "Safety Kernel" that sits between your LLM and your execution environment. Think of it as a firewall/proxy for agentic actions.

Instead of relying on the prompt to "please be safe," Cordum enforces policy at the protocol layer: 1. It intercepts the agent's intent. 2. Checks it against a strict policy (e.g., "Refund > $50 requires human approval"). 3. Manages the execution via a state machine.

Tech Stack: - Written in Go (for performance and concurrency). - Uses NATS JetStream for the message bus. - Redis for state management.

It’s still early days, but I’d love your feedback on the architecture and the approach to agent governance.

Repo: https://github.com/cordum-io/cordum

Happy to answer any questions!

Comments

yaront111•2w ago

Really appreciate the feedback to improve:)

bhaviav100•1w ago

This matches what I’ve been seeing too.

I’ve been building a similar enforcement layer, but focused first on customer-facing AI systems where mistakes create contractual or financial obligations rather than just infra damage.

One thing that surprised me in practice: teams don’t just need a state machine and allow/deny. They need the gateway to explain why an action was blocked, what policy path fired, and what approval chain would be required to proceed.

Otherwise ops teams can’t debug policy coverage when something goes wrong.

Curious whether you’re seeing demand more from infra teams or from CX / RevOps / compliance orgs right now.

Show HN: Look Ma, No Linux: Shell, App Installer, Vi, Cc on ESP32-S3 / BreezyBox

Show HN: I spent 4 years building a UI design tool with only the features I use

Show HN: If you lose your memory, how to regain access to your computer?

Show HN: R3forth, a ColorForth-inspired language with a tiny VM

Show HN: Smooth CLI – Token-efficient browser for AI agents

Show HN: Slack CLI for Agents

Show HN: FastLog: 1.4 GB/s text file analyzer with AVX2 SIMD

Show HN: Gigacode – Use OpenCode's UI with Claude Code/Codex/Amp

Show HN: Artifact Keeper – Open-Source Artifactory/Nexus Alternative in Rust

Show HN: I built a directory of $1M+ in free credits for startups

Show HN: A Kubernetes Operator to Validate Jupyter Notebooks in MLOps

Show HN: Falcon's Eye (isometric NetHack) running in the browser via WebAssembly

Show HN: Horizons – OSS agent execution engine

Show HN: Daily-updated database of malicious browser extensions

Show HN: BioTradingArena – Benchmark for LLMs to predict biotech stock movements

Show HN: 33rpm – A vinyl screensaver for macOS that syncs to your music

Show HN: Chiptune Tracker

Show HN: A password system with no database, no sync, and nothing to breach

Show HN: Micropolis/SimCity Clone in Emacs Lisp

Show HN: Local task classifier and dispatcher on RTX 3080

Show HN: GitClaw – An AI assistant that runs in GitHub Actions

Show HN: An open-source system to fight wildfires with explosive-dispersed gel

Show HN: Agentism – Agentic Religion for Clawbots

Show HN: Disavow Generator – Open-source tool to defend against negative SEO

Show HN: BPU – Reliable ESP32 Serial Streaming with Cobs and CRC

Show HN: Hibana – An Affine MPST Runtime for Rust

Show HN: Craftplan – I built my wife a production management tool for her bakery

Show HN: Beam – Terminal Organizer for macOS

Show HN: Total Recall – write-gated memory for Claude Code

Show HN: Agent Arena – Test How Manipulation-Proof Your AI Agent Is