WeSearch

Cerberus – a local firewall for AI agents' tool calls

·5 min read · 0 reactions · 0 comments · 9 views
Cerberus – a local firewall for AI agents' tool calls

🐺 Cerberus — local-first security gateway for AI coding agents. Intercept, risk-score & human-approve every tool call (Claude Code, Codex, Cursor, Cline). - Adirdabush1/cerberus

Original article
GitHub
Read full at GitHub →
Opening excerpt (first ~120 words) tap to expand

Cerberus 🐺 A local-first security gateway for autonomous AI coding agents. Cerberus sits between the agent (Claude Code, Codex, Cursor, Cline) and your machine, intercepts every tool call before it runs, risk-scores it across four signals, and either allows, audits, asks for human approval, or blocks it — all on your machine, with no external API and nothing leaving the box. The problem Autonomous coding agents run shell commands, edit files, and make network calls on your behalf — at machine speed, often unattended. One bad step (rm -rf, an unwanted git push, a leaked .env, a poisoned README that tricks the agent into exfiltrating secrets) and there's no human in the loop to stop it. Cerberus puts that checkpoint on the tool boundary, where the agent actually acts.

Excerpt limited to ~120 words for fair-use compliance. The full article is at GitHub.

Anonymous · no account needed
Share 𝕏 Facebook Reddit LinkedIn Threads WhatsApp Bluesky Mastodon Email

Discussion

0 comments

More from GitHub

An AI Chief of Staff
GitHub·9
I made a game that teaches you how AI works
GitHub·47
AI Berkshire
GitHub·9
Wayfinder Router: deterministic routing of queries between local and hosted LLM
GitHub·10
IBM MCGA Gate Array Reverse Engineering
GitHub·12
Pandas-ta-classic 0.6.52: SMC liquidity sweep detector, Ichimoku fixes
GitHub·5