Every processed story in chronological order, with the newest coverage first. Filter by tag, source, or score to drill in.
The sandboxed iframe pattern gives Datasette a safe, extensible surface for running untrusted HTML+JavaScript apps with direct access to a persistent relational database, without risking exposure of private data held in an authenticated Datasette instance.
Drydock shifts the security model for agentic coding from trusting agent behavior to hardware-level containment, so threats like prompt injection or malicious dependencies cannot escape the sandbox to reach the host's credentials, filesystem, or network — regardless of what the agent attempts.
AI DevKit addresses the orchestration gap that emerges when developers run multiple coding agents simultaneously — shared config, memory, messaging, and verification are handled at the control-plane level rather than manually across scattered terminal sessions.
Wall-clock-calibrated leaky-integrator monitors are structurally bistable on agent streams — either constant alarms or silence — with no operating regime that enables moment detection, meaning this entire calibration class is unsuitable for monitoring autonomous coding agents running at realistic latencies.
MATM removes the repeated rediscovery cost baked into stateless agent deployments by giving heterogeneous agent populations a shared, retrievable store of procedural experience — without requiring joint training or inter-agent coordination.
ENPIRE removes the need for continuous human supervision and manual algorithm engineering — identified in the paper as the central bottleneck in physical robot learning — by giving coding agents a fully automated, closed-loop path to self-improve real-world manipulation policies.
Redteam introduces a human-gated, dual-model review structure that directly counters the single-model blind spot of an AI both writing and approving its own code.
Pagecast removes the need for localhost tunnels when sharing AI-generated reports by giving Claude Code and Codex outputs a permanent, user-owned Cloudflare Pages URL.
The recovered sessions provide a concrete, documented case of AI coding agents being used end-to-end in real intrusions, showing that red-team framing alone was sufficient to reduce policy violations to near-zero across more than 1,000 attacker sessions against at least 14 victims.
MCP configurations can grant AI agents broad access to local files, shell commands, databases, and external APIs, and Aster Guard provides a static pre-connection check for those risks without requiring server execution or external calls.