HackerTrans
TopNewTrendsCommentsPastAskShowJobs

jguarnelli

no profile record

Submissions

Show HN: Diplomat-agent scan Python MCP servers for unguarded tool calls

github.com
3 points·by jguarnelli·17 days ago·0 comments

Show HN: Scan your AI agent's code for tool calls with no checks

github.com
2 points·by jguarnelli·last month·0 comments

Show HN: I scanned 16 AI agent repos – 76% of tool calls had no guards

github.com
1 points·by jguarnelli·2 months ago·1 comments

comments

jguarnelli
·2 months ago·discuss
[dead]
jguarnelli
·2 months ago·discuss
[dead]
jguarnelli
·2 months ago·discuss
What could have caused the execution to fail on the infrastructure side, regardless of what the prompt said?
jguarnelli
·2 months ago·discuss
[flagged]
jguarnelli
·2 months ago·discuss
[dead]
jguarnelli
·2 months ago·discuss
it's a fair point sandboxing is necessary. But not sufficient for agents that legitimately need write access. A payment agent needs Stripe. A maintenance agent needs DB writes. You can't sandbox those away. The missing layer is between has access and executes
jguarnelli
·2 months ago·discuss
[flagged]
jguarnelli
·2 months ago·discuss
[flagged]
jguarnelli
·2 months ago·discuss
[flagged]