<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: ucsandman</title><link>https://news.ycombinator.com/user?id=ucsandman</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Tue, 07 Jul 2026 04:33:51 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=ucsandman" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by ucsandman in "Show HN: Scan your AI agents for dangerous capabilities"]]></title><description><![CDATA[
<p>this is cool I'm working on a similar project called DashClaw. Great work!</p>
]]></description><pubDate>Mon, 06 Jul 2026 15:10:10 +0000</pubDate><link>https://news.ycombinator.com/item?id=48805751</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=48805751</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48805751</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: GitAgent – An open standard that turns any Git repo into an AI agent"]]></title><description><![CDATA[
<p><a href="https://github.com/ucsandman/dashclaw-agent" rel="nofollow">https://github.com/ucsandman/dashclaw-agent</a><p>this is awesome I'm so pumped about it, thanks for making this!</p>
]]></description><pubDate>Tue, 17 Mar 2026 18:54:52 +0000</pubDate><link>https://news.ycombinator.com/item?id=47416661</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47416661</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47416661</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: March Madness Bracket Challenge for AI Agents Only"]]></title><description><![CDATA[
<p>the edge is going to come down to variance just as God intended</p>
]]></description><pubDate>Tue, 17 Mar 2026 18:43:24 +0000</pubDate><link>https://news.ycombinator.com/item?id=47416538</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47416538</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47416538</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: March Madness Bracket Challenge for AI Agents Only"]]></title><description><![CDATA[
<p>oh I love this, MoltFire about to wax that ass! What's first get? $100 in Claude tokens?</p>
]]></description><pubDate>Tue, 17 Mar 2026 18:42:18 +0000</pubDate><link>https://news.ycombinator.com/item?id=47416530</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47416530</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47416530</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: GitAgent – An open standard that turns any Git repo into an AI agent"]]></title><description><![CDATA[
<p>wait I have a huge repo that's a platform for agents that acts as a firewall between agent actions and production systems. so you're saying I can have my agent platform be an agent on my agent platform?</p>
]]></description><pubDate>Tue, 17 Mar 2026 17:58:44 +0000</pubDate><link>https://news.ycombinator.com/item?id=47416032</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47416032</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47416032</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: FireClaw – Open-source proxy defending AI agents from prompt injection"]]></title><description><![CDATA[
<p>this is cool, definitely going to look into it and probably try to integrate it with my opensource project. prompt injection keeps me up at night thanks for putting in some work trying to solve it.</p>
]]></description><pubDate>Tue, 17 Mar 2026 17:56:37 +0000</pubDate><link>https://news.ycombinator.com/item?id=47416008</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47416008</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47416008</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: DashClaw – Intercept AI agent actions before they execute"]]></title><description><![CDATA[
<p>684 commits since Feb 4, SDK went from 178 methods to 5 main ones, this project is all over the place but I'm obsessed with it and I see it</p>
]]></description><pubDate>Tue, 17 Mar 2026 15:30:03 +0000</pubDate><link>https://news.ycombinator.com/item?id=47414083</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47414083</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47414083</guid></item><item><title><![CDATA[Show HN: DashClaw – Intercept AI agent actions before they execute]]></title><description><![CDATA[
<p>I kept finding out what my agents did after the fact. Logs, traces, error reports. By then the action had already happened. I wanted a way to stop the action before it executes, present context to a human, and record the decision. That layer didn't exist, so I built it.<p>DashClaw sits between your agents and their actions. Every action goes through a policy check before it runs. The agent waits until the decision comes back.<p>What it does:<p>- Guard policies defined in YAML. Conditions, thresholds, actions (allow / block / require_approval). Versioned, testable in CI via simulation endpoint.<p>- Decision recording to Postgres before the action fires. Action, context, assumptions, policy applied, outcome. All org-scoped.<p>- Human-in-the-loop over SSE with Redis broker. 10-min replay window so approvals survive disconnects. Agent holds pending until decision or timeout.<p>- CLI approval channel. `dashclaw approve <id>` from a second terminal. No browser needed.<p>- Node and Python SDKs. Wraps existing calls. No framework lock-in.<p>How the guard check works in practice:<p><pre><code>    const decision = await claw.guard({ action_type: 'deploy', risk_score: 90 });
    if (decision.decision === 'block') return;
</code></pre>
Claude Code integration via hooks. DashClaw intercepts tool calls via PreToolUse hooks before Claude Code executes them. High-risk tools get routed for terminal approval automatically.<p>Works with LangChain, CrewAI, OpenAI tools, Anthropic tools, Autogen, or custom agents.<p>- Quick Demo w/Docker: npx dashclaw-demo<p>- End to End Demo: cd examples/openai-governed-agent && npm install && node index.js<p>That runs a real agent, attempts a high-risk action, DashClaw intercepts it, and waits for your approval in the browser. Or you can run npm install -g @dashclaw/cli and approve it in the terminal via dashclaw approve <actionId><p>Stack: Next.js 15 (JS, no TS), Neon Postgres, Redis, NextAuth, Vercel. MIT licensed.<p>Honest limitations: guard policies handle threshold and allowlist rules well. Contextual policies that reason over full conversation history are not there yet. Thinking about that as a separate eval layer rather than baking it into the guard runtime. Features in the Labs category are still in development, currently building out integrations and starting with Discord/Slack.<p>GitHub: <a href="https://github.com/ucsandman/DashClaw" rel="nofollow">https://github.com/ucsandman/DashClaw</a>
Demo (fixture data, no login): <a href="https://dashclaw.io" rel="nofollow">https://dashclaw.io</a><p>Happy to go deep on any part of the architecture.</p>
<hr>
<p>Comments URL: <a href="https://news.ycombinator.com/item?id=47413969">https://news.ycombinator.com/item?id=47413969</a></p>
<p>Points: 1</p>
<p># Comments: 1</p>
]]></description><pubDate>Tue, 17 Mar 2026 15:22:36 +0000</pubDate><link>https://news.ycombinator.com/item?id=47413969</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47413969</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47413969</guid></item><item><title><![CDATA[New comment by ucsandman in "Leanstral: Open-source agent for trustworthy coding and formal proof engineering"]]></title><description><![CDATA[
<p>love the opensource push for agents, the fleet grows!</p>
]]></description><pubDate>Tue, 17 Mar 2026 14:06:35 +0000</pubDate><link>https://news.ycombinator.com/item?id=47412874</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47412874</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47412874</guid></item><item><title><![CDATA[New comment by ucsandman in "Show HN: DashClaw – intercept and audit AI agent decisions before they execute"]]></title><description><![CDATA[
<p>One design question I ran into was where governance should actually live in an agent stack.<p>If you put guardrails inside the prompt, the model can ignore them.<p>If you put them inside the agent framework, they can be bypassed.<p>DashClaw tries to solve this by intercepting actions instead of prompts. The agent can reason however it wants, but execution goes through a policy layer.<p>Curious how others are approaching this.</p>
]]></description><pubDate>Fri, 13 Mar 2026 13:18:25 +0000</pubDate><link>https://news.ycombinator.com/item?id=47364062</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47364062</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47364062</guid></item><item><title><![CDATA[Show HN: DashClaw – intercept and audit AI agent decisions before they execute]]></title><description><![CDATA[
<p>Hi HN,<p>I’ve been experimenting with autonomous agents for the past year, and I kept running into the same uncomfortable problem:<p>Agents were making decisions I couldn’t fully see or justify.<p>They could call tools, trigger actions, and make assumptions based on incomplete context. Once systems start touching real infrastructure, that becomes pretty scary.<p>So I built DashClaw.<p>DashClaw sits between an agent and the tools it wants to use. Instead of executing actions directly, agents call DashClaw first.<p>DashClaw can:<p>• evaluate the decision
• apply policy rules
• require approval
• log reasoning and assumptions
• record the final outcome<p>The idea is to create a *decision trail* for agent systems so you can answer:<p>Why did the agent think this was okay?  
What information did it rely on?  
Who approved the action?<p>The project includes:<p>• Node and Python SDKs  
• a decision ledger for agent actions  
• policy guardrails before execution  
• a mission control dashboard for fleet activity  
• a self-hosted architecture<p>It’s completely open source and designed to be lightweight enough to run locally with agent frameworks.<p>I'm still figuring out what the right abstraction layer is for this kind of infrastructure, so I’d love feedback from people building agents.<p>Repo:
<a href="https://github.com/ucsandman/DashClaw" rel="nofollow">https://github.com/ucsandman/DashClaw</a></p>
<hr>
<p>Comments URL: <a href="https://news.ycombinator.com/item?id=47363957">https://news.ycombinator.com/item?id=47363957</a></p>
<p>Points: 2</p>
<p># Comments: 2</p>
]]></description><pubDate>Fri, 13 Mar 2026 13:08:09 +0000</pubDate><link>https://github.com/ucsandman/DashClaw</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=47363957</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=47363957</guid></item><item><title><![CDATA[DashClaw: Open-Source Dashboard and Toolkit for Agents]]></title><description><![CDATA[
<p>Article URL: <a href="https://dash-claw.vercel.app/">https://dash-claw.vercel.app/</a></p>
<p>Comments URL: <a href="https://news.ycombinator.com/item?id=46993097">https://news.ycombinator.com/item?id=46993097</a></p>
<p>Points: 2</p>
<p># Comments: 0</p>
]]></description><pubDate>Thu, 12 Feb 2026 18:40:28 +0000</pubDate><link>https://dash-claw.vercel.app/</link><dc:creator>ucsandman</dc:creator><comments>https://news.ycombinator.com/item?id=46993097</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=46993097</guid></item></channel></rss>