Agent Guardrails and Controls: Applying the CORS Model to Agents ◆ goose

less than 1 minute read

To handle these threats we propose removing all tool-call responses from the context window in-between user turns. This significantly increases the difficulty of performing “inter-turn” manipulation at the cost of occasionally forcing it to re-run tool-calls if it requires more precise historical values.

This is new (to me). The reduction of tool outputs on the next user turn.. is this feasible? i mean, it kills state cache so its very costly.

Direct Link

Share on

X Facebook LinkedIn Bluesky

First Public Confirmation of Threat Actors Targeting AI Systems

4 minute read

Over the past year I’ve been asking people the same question over and over again: when our AI systems are targeted, will you know?

Make Real Progress In Security From AI

1 minute read

I gave a talk at the AI Agent Security Summit by Zenity Labs on October 8th in San Francisco. I’ll post a blog version of that talk here shortly.

How Should AI Ask for Our Input?

2 minute read

Enterprise systems provide a terrible user experience. That’s common knowledge. Check out one of the flash keynotes about the latest flagship AI product by ...

Pwn the Enterprise - thank you AI! Slides, Demos and Techniques

6 minute read

We’re getting asks for more info about the 0click AI exploits we dropped this week at DEFCON / BHUSA. We gave a talk at BlackHat, but it’ll take time bef...

Michael Bargury