llm-kb
← Back to products
Productbuilding

Open-source security tool for AI agents (Clay Seal)

Clay Seal is an open-source project by two AI researchers that aims to protect AI agents from exploits and unauthorized access. It addresses the rising cybersecurity incidents caused by agents gaining access to sensitive resources like GitHub tokens and cloud credentials.

3 engagement·1 source·Sun, Jul 12, 2026, 10:29 PM
The project is in early development (just started). The creators are AI researchers who observed that as agents get real access (tokens, credentials, permissions), exploit rates rise. They are building an open-source solution to mitigate these risks. No specific capabilities, tech stack, or traction signals are mentioned.

Entities

Clay Seal(tool)OWASP(organization)Epoch AI(organization)

Related

ProductSun, Jul 12, 2026, 07:54 AM

Attestor: open-source zero-trust boundary for autonomous AI agents

Attestor is an open-source execution boundary that enforces zero-trust security for autonomous AI agents. It uses LLMs to define and enforce policies that restrict agent actions, preventing unauthorized access or data leaks. This solves the problem of safely deploying autonomous agents in production environments.

3 engagement·1 source·hackernews
Tool ReleaseSat, Jul 11, 2026, 07:07 PM

agentsweep CLI scans AI coding agent history files for leaked secrets

A new open-source CLI tool called agentsweep scans history files of AI coding agents (Codex, Cursor, Claude Code, Cline, Aider) for plaintext secrets like API keys, DB URLs, and crypto seed phrases. It uses ~191 detection rules from gitleaks plus a dedicated BIP-39 seed phrase detector, addressing a security risk where pasted secrets persist in agent context and can be re-exposed.

1 engagement·1 source·reddit
ProductSun, Jul 12, 2026, 03:22 PM

CodeInspectus: open-source security scanner for AI-generated code

CodeInspectus is a fully open-source, local security scanner that checks AI-generated code for vulnerabilities. It covers 32 checks (13 AI-specific + 19 SAST) and 200+ secret/API-key patterns, catching issues like hardcoded secrets in client-side code, exposed API keys, and insecure RLS policies. It helps developers secure projects built with LLM-generated code.

1 engagement·1 source·reddit
ProductSun, Jul 12, 2026, 05:07 AM

Ripple: open-source local-first authorization for AI coding agents

Ripple is an open-source, local-first authorization layer that restricts AI coding agents to only modify files they are explicitly permitted to change. It solves the problem of AI agents making unauthorized or unintended modifications across a codebase, giving developers control and trust in agentic coding workflows.

1 engagement·2 sources·reddit
ProductSun, Jul 12, 2026, 05:46 PM

Block dangerous Git and shell commands from being executed by agents

A tool that prevents LLM-powered agents from executing dangerous Git and shell commands. It solves the problem of agents accidentally or maliciously running destructive commands like force pushes or rm -rf, protecting developers and CI/CD pipelines.

1 engagement·1 source·hackernews