Top stories from Hacker News — for AI builders, hackers, and founders.
Article TL;DR: Attacker stole env vars from Vercel customers via OAuth chain breach undetected for 22 months. Key Takeaways Breach started with Roblox cheat malware on a Context.ai employee laptop in …
Article TL;DR: Brex open-sourced an LLM-as-judge HTTP proxy to approve or block agent API calls in production. Key Takeaways Natural language policies auto-generated from traffic; matched human judgme…
Article TL;DR: Blog argues OpenClaw’s security model is as primitive as MS-DOS — sandboxing the agent isn’t enough. Key Takeaways Wrapping the whole agent in Docker doesn’t prevent credential access b…