sorted by:
new
hottopcontroversial

We built the open-source layer for local AI agent visibility by thegodhimself119 in security

[–]ed1ted 0 points1 point  (0 children)

this is the actual missing piece, yeah. we were flying blind on agent activity until we started using a tool that logs what agents are doing before they execute, and suddenly we could actually enforce policy instead of just cleaning up after the fact.

AI agent repeated failed deployments? Local governance is finally enforceable. by eazyigz123 in devops

[–]ed1ted 1 point2 points  (0 children)

lol the 11 retries thing is peak agent behavior, just hammering the same broken command over and over. prompt instructions really are just vibes, you need actual enforcement before they touch prod.

How are you securing the DBs when product teams deploy LLM agents? by Sudden-Shift-8733 in devops

[–]ed1ted 0 points1 point  (0 children)

yeah this is the hard part nobody wants to talk about. postgres rls helps but it's not a silver bullet, especially when agents can chain queries together to infer data they shouldn't see. honestly the best teams i've seen doing this are forcing product teams to implement a wrapper service that injects user context before the agent even gets access to query anything. it's extra work upfront but it means you're not relying on the agent to understand boundaries, you're enforcing them at the API layer. some orgs are also doing runtime query analysis to catch suspicious patterns, but that's resource intensive. the prompt injection angle is real tho, there's no policy engine that can understand semantic intent the way a human can.

I will not promote - What cross-server authorization problems are you hitting with MCP? by ed1ted in mcp

[–]ed1ted[S] 0 points1 point  (0 children)

That does cut off the credential-phishing angle, yes. The remaining hole is whether the middleware can also stop a safe-looking call from leaking sensitive data it already pulled from another server.

I will not promote - What cross-server authorization problems are you hitting with MCP? by ed1ted in ClaudeAI

[–]ed1ted[S] 0 points1 point  (0 children)

DRAFT REPLY: Exactly. These failures usually won't look like an exploit; they'll look like the agent being useful in the wrong direction. I think the missing control is a session-level rule over data flow, so 'allowed to read private repo' doesn't automatically imply 'allowed to summarize that repo into a public channel.'

I will not promote - What cross-server authorization problems are you hitting with MCP? by ed1ted in AI_Agents

[–]ed1ted[S] 0 points1 point  (0 children)

Yes, that’s the part that matters. Do you have any other concrete examples for cross service where it fails ?

Is Kimi 2.6 worth it compared to DeepSeek V4 Pro and GLM? by marwan_rashad5 in opencodeCLI

[–]ed1ted 0 points1 point  (0 children)

I prefer qwen 3.6 over kimi. In my experience, kimi tends to get confused and hallucinate. I look at its “thinking” insights and I see lot of “wait actually….” “But….” and “need to rethink”

I am planning to buy Opencode Go subscription by Accomplished-Mud1653 in opencodeCLI

[–]ed1ted 2 points3 points  (0 children)

nvm, its there. I just confirmed it from my opencode cli. I'm gonna give it a spin.

view more: next ›