Hacker NewsRewrite Your CLI for AI Agents ManifestoJustin Poehnelt·high signalAgent DX design guide: JSON output, runtime schema, input hardening, MCP surfaces. Core principle: agent is not a trusted operator.SourceSource pageJustin Poehnelt↳ Follow the threadPolicy dependency / Stack layerFirst Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool callBusiness WirePolicy dependency / Stack layerCodenotary ships AgentMon 3 for agent runtime policy and compliance loggingAI Agent StoreStack layer / Threat patternMicrosoft Agent Framework python-1.11.0 adds Progressive MCP Disclosure and GA Skills APIGitHub (Microsoft Agent Framework)Policy dependency / Stack layerPattern: this week's enterprise agent news is dominated by runtime governance and cost controlAI Agent StorePolicy dependency / Stack layerPattern: A Provider-Abstraction / BYOK Layer Is Hardening Beneath Agent HarnessesGitHubPolicy dependency / Stack layerMicrosoft Agent Framework ships early-July releases, promotes github-copilot-sdk to v1.0.0GitHub (Microsoft Agent Framework)Stack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivStack layer / Threat patternPick your agent sandbox primitive by threat model: Firecracker microVM vs gVisor vs V8 isolateNorthflank