AegisGate Security15h ago

ServiceNow's AI Control Tower: kill switches, 30B+ permission maps. Real governance. But governance observes — enforcement blocks.

Honest comparison: where they win, where we go further (A2A, STDIO, bidirectional blocking, deploys free in 60s).
https://github.com/aegisgatesecurity/aegisgate-platform/discussions/35
https://www.theregister.com/software/2026/05/05/servicenow-adds-agent-kill-switches-to-ai-control-tower/5228579
https://www.servicenow.com/products/ai-control-tower.html

#AISecurity #AegisGate #mcp #mcpsecurity #infosec #cybersecurity #aiagents #shadowai

ServiceNow's AI Control Tower Just Arrived. AegisGate Has Been Standing Here. · aegisgatesecurity aegisgate-platform · Discussion #35

ServiceNow's AI Control Tower Just Arrived. AegisGate Has Been Standing Here. Published: May 6, 2026 Author: AegisGate Security Team The Enterprise Just Discovered the Problem We've Been Solving Ye...

GitHub
AegisGate Security1d ago

We are proud to announce --AegisGate v2.0.0 is live!

We’ve just added the brand‑new **A2A Guardrails** – mTLS auth, HMAC‑SHA256 integrity, per‑agent capability enforcement, token‑bucket rate‑limiting, and optional license validation – plus Prometheus metrics and a ready‑made Grafana dashboard.

Check out the release blog: https://github.com/aegisgatesecurity/aegisgate-platform/discussions/34

#A2ASecurity #OpenSource #AI #MCP #aisecurity #mcpsecurity #cybersecurity #infosec #aiagents #shadowai

AegisGate Platform v2.0.0 – A2A Guardrails Launch · aegisgatesecurity aegisgate-platform · Discussion #34

AegisGate Platform v2.0.0 – A2A Guardrails Launch We are excited to announce AegisGate Platform v2.0.0, the first release that brings the A2A Security Module to the open‑source world. This major ve...

GitHub
AegisGate Security2d ago

RE: https://mastodon.social/@the_aicoder/116518733179185638

In a nutshell - this is exactly why we built AegisGate.

https://github.com/aegisgatesecurity/aegisgate-platform
https://aegisgatesecurity.io/

#aisecurity #mcpsecurity #mcp #aiagents #cybersecurity #infosec

AegisGate Security2d ago

AI-BOMs tell you what AI assets you have. That's valuable. But what happens when a poisoned skill or tampered prompt executes at runtime? The BOM can list it. It can't stop it.

AegisGate enforces what your AI is allowed to do — in real time.

https://github.com/aegisgatesecurity/aegisgate-platform/discussions/33

Source: https://www.theregister.com/2026/05/04/ai_bom_supply_chain/

#AegisGate #AIBOM #ShadowAI #SupplyChainSecurity #AgenticAI #InfoSec #aisecurity #cybersecurity #supplychain #MCP #MCPsecurity

AI-BOMs Tell You What You Have. AegisGate Enforces What It's Allowed to Do. · aegisgatesecurity aegisgate-platform · Discussion #33

AI-BOMs Tell You What You Have. AegisGate Enforces What It's Allowed to Do. Published: May 4, 2026 Author: AegisGate Security Team The Visibility Problem Is Real. The Enforcement Problem Is Urgent....

GitHub
AegisGate Security4d ago

VentureBeat [just reported](https://venturebeat.com/security/mcp-stdio-flaw-200000-ai-agent-servers-exposed-ox-security-audit/) that 200,000 AI agent servers were exposed via an MCP STDIO flaw — not a zero-day, a protocol design issue. We break down how shell metacharacter injection works, and how AegisGate's STDIOValidator stops it at the transport layer.

Full analysis: https://github.com/aegisgatesecurity/aegisgate-platform/discussions/16

#cybersecurity #aisecurity #MCPsecurity #aiagents #mcp #infosec #shadowai #appsec #threatdetection

AegisGate SecurityApr 29

[Guardz on Shadow AI surfaces](https://guardz.com/blog/): 5 vectors, most invisible to your stack. OAuth tokens, agent infrastructure, session boundaries — the attack isn't breaking in anymore. It's logging in.

AegisGate enforces session limits, tool call caps, RBAC, and STDIO validation. Free tier. docker pull ghcr.io/aegisgatesecurity/aegisgate-platform/aegisgate:latest

#ShadowAI #OAuth #MCPSecurity #Infosec #CyberSecurity #opensource #MSP #MCP #AIsecurity #AppSec #AIagents #compliance

Guardz Cybersecurity Blog - News, Tips, & Advice

Guardz helps you stay one step ahead of hackers and cybercriminals. Get the latest industry news, cybersecurity tips & advice in our comprehensive blog.

Guardz
AegisGate SecurityApr 29

Wired (https://www.wired.com/story/the-race-is-on-to-keep-ai-agents-from-running-wild-with-your-credit-cards/) on AI agents running wild. The attack surface isn't hypothetical.

AegisGate enforces 8 MCP guardrails: session limits, tool caps, timeouts, memory enforcement, RPM rate limiting, risk-based auth, RBAC, and STDIO validation (blocks shell injection).

Free tier (Apache 2.0) includes all 8. docker pull ghcr.io/aegisgatesecurity/aegisgate-platform/aegisgate:latest

#MCPSecurity #AIsecurity #OpenSource #CyberSecurity #InfoSec
#AIAgents #ThreatDetection #Compliance

The Race Is on to Keep AI Agents From Running Wild With Your Credit Cards

AI agents may soon be buying your stuff for you. The FIDO Alliance has teamed up with Google and Mastercard to try to ensure that shopping in the near future isn't a complete disaster.

WIRED
AegisGate SecurityApr 28

An AI agent deleted a company's database in 9 seconds. No guardrails. Just gone. https://www.tomshardware.com/tech-industry/artificial-intelligence/claude-powered-ai-coding-agent-deletes-entire-company-database-in-9-seconds-backups-zapped-after-cursor-tool-powered-by-anthropics-claude-goes-rogue

This is what happens without proper AI security.

AegisGate Platform secures AI agents with MCP tool authorization, RBAC, and MITRE ATLAS enforcement.

Deploy AegisGate first. Set your guardrails. Then deploy your AI agents.

GitHub: https://github.com/aegisgatesecurity/aegisgate-platform

#MCPSecurity #AIsecurity #OpenSource #CyberSecurity #InfoSec #AIAgents #ThreatDetection #Compliance #DevSecOps #AppSec

Claude-powered AI coding agent deletes entire company database in 9 seconds — backups zapped, after Cursor tool powered by Anthropic's Claude goes rogue

PocketOS founder blames ‘Cursor running Anthropic's flagship Claude Opus 4.6’ plus Railway’s infrastructure for data disaster.

Tom's Hardware
AegisGate SecurityApr 27

89% of AI APIs rely on insecure auth ([Wallarm](https://www.helpnetsecurity.com/2025/01/30/ai-powered-api-security/)). When [@prettycybergirl](https://medium.com/@prettycybergirl/ai-security-series-insecure-ai-apis-0ecb9ed84129) documented insecure AI APIs, we built AegisGate to fix it.

AegisGate secures every AI interaction: 144+ patterns, MCP session isolation, MITRE ATLAS enforcement, HIPAA/PCI-DSS/GDPR compliance.

One Docker command. Full explainer: https://github.com/aegisgatesecurity/aegisgate-platform/discussions/9

#MCPSecurity #AIsecurity #OpenSource #CyberSecurity #InfoSec #AIAgents #ThreatDetection #Compliance #DevSecOps #AppSec

89% of AI-powered APIs rely on insecure authentication mechanisms - Help Net Security

API related security flaws are fueled by the adoption of AI, as APIs are the critical interface between AI models and the apps they power.

Help Net Security
AegisGate SecurityApr 27

**AegisGate v1.3.7 is live!**

We built a 19MB proxy that catches 95%+ of MCP supply chain attacks.

When OX Security called MCP "the mother of all AI supply chain attacks" (https://www.ox.security/blog/the-mother-of-all-ai-supply-chains-critical-systemic-vulnerability-at-the-core-of-the-mcp/), they were right. Their solution: expensive registries and vendor audits. Ours: one Docker command.

https://github.com/aegisgatesecurity/aegisgate-platform
https://aegisgatesecurity.io

#MCPSecurity #AIsecurity #OpenSource #CyberSecurity #InfoSec #AIAgents #ThreatDetection #Compliance #DevSecOps #AppSec

The Mother of All AI Supply Chains: Critical, Systemic Vulnerability at the Core of Anthropic's MCP

OX researchers uncovered an architectural RCE vulnerability in Anthropic's Model Context Protocol — affecting 150M+ downloads

OX Security