AgentsCVE-2026-27952 Agenta-API Sandbox Escape via NumPyTheHackerWire·high signalSandbox escape in Agenta-API via incorrectly allowlisted numpy. Same dangerous allowlist pattern as n8n and Langflow.SourceSource pageTheHackerWire↳ Follow the threadStack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivStack layer / ContrastClaude Code's July 10 Update Hardens the Agent Loop Against Forged Approvals: Transcript-Tamper Blocking + 'No Human Input Occurred' NoticesReleasebot (Anthropic Claude Code changelog, corroborated by code.claude.com/docs/whats-new)Policy dependency / Stack layerCodenotary ships AgentMon 3 for agent runtime policy and compliance loggingAI Agent StorePolicy dependency / Stack layerFirst Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool callBusiness WireStack layer / Update threadPattern: The Agent's Web Access Is Moving Inside the IDE as a Sandboxed, Allowlisted Browser9to5MacStack layer / ContrastAgent Zero v1 Reframes Open-Source Agent Frameworks as Plugin-First, Git-Backed ProjectsAgentic.aiStack layer / Update threadPattern: Agent Autonomy Defaults Are Flipping 'On' in Managed Enterprise CloudsReleasebotStack layer / Update threadclaude-video Turns 'Watch This Video' Into a Portable Agent Skill — 8K Stars in WeeksGitHub