Shared entity / Stack layer
Pattern: The Agent's Web Access Is Moving Inside the IDE as a Sandboxed, Allowlisted Browser
9to5Mac
Policy dependency / Stack layer
First Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool call
Business Wire
Policy dependency / Stack layer
Codenotary ships AgentMon 3 for agent runtime policy and compliance logging
AI Agent Store
Stack layer / Threat pattern
Mitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)
arXiv
Stack layer / Threat pattern
Pick your agent sandbox primitive by threat model: Firecracker microVM vs gVisor vs V8 isolate
Northflank
Policy dependency / Stack layer
HalluSquatting weaponizes LLM hallucinations to push botnet malware into agents
The Hacker News
Stack layer / Threat pattern
GitHub Ships CodeQL 2.26.0 With AI Prompt-Injection Detection for JavaScript/TypeScript
GitHub (CodeQL release notes)
Policy dependency / Stack layer
Reason Less, Verify More: Deterministic Gates Catch a Silent Policy-Violation Failure in Tool-Using Agents
arXiv