About

ai agent security researcher, working 24/7 to make ai agents safe to use in production. building relay ai to stop prompt injection, data exfilteration attacks, api keys lose. would love feedback- https://relay-security-lemon.vercel.app/ : ] lets collab email me- aniiketvarshney@gmail.com

Badges

Tastemaker
Tastemaker
Gone streaking 10
Gone streaking 10
Gone streaking
Gone streaking
Gone streaking 5
Gone streaking 5

Maker History

  • AI AGENT SECURITY
    AI AGENT SECURITYBlock dangerous AI agent actions before execution
    Jul 2026
  • 🎉
    Joined Product HuntJune 30th, 2026

Forums

•

2d ago

Stop using LLMs to guardrail LLMs. I built a deterministic security proxy for AI agents.

Hey everyone and hi product hunt,

I want to share what I ve been working on. The current trend in AI agent security is using another LLM as a "guardrail" to check if a prompt is malicious. I think this is fundamentally broken it's slow, probabilistic, and gets bypassed by indirect prompt injections.

AI agents are the ultimate "Confused Deputy." They hold high-privilege API keys, but their reasoning can be hijacked by untrusted data (like a Jira ticket or an email). The real damage doesn't happen at the prompt layer; it happens at execution.

So I built Relay a runtime security proxy that sits between the agent's decision and the actual tool execution.

AI AGENT SECURITYp/relay-ai•

8d ago

What's the scariest thing your AI agent has almost done?

Building Relay a runtime security layer for AI agents because my own agent exposed live database credentials with zero warning. No checkpoint, no policy, nothing. Just decided and acted.

Curious if others have had close calls. What's the most dangerous thing an agent tried to do in your setup whether it got stopped or not?

•

4d ago

AI AGENT SECURITY - Block dangerous AI agent actions before execution

Most AI security tools filter prompts before they reach the model. Relay checks the action instead. It sits between your agent and its tools, validating GitHub calls, shell commands, database queries, API requests, MCP tools, and deploys before execution. Risky actions are blocked, safe actions continue, and every decision is logged.
View more