dawg91's comments

dawg91 · 2026-02-13T21:32:05 1771018325

Your eastern european users will have some interesting results when googling for this

fragmede · 2026-02-13T21:43:02 1771018982

for those of us who don't speak "eastern Europeans", can you tell us what it means?

mewpmewp2 · 2026-02-13T21:52:59 1771019579

It is just ks is same as x.

I mean honestly if you pronounce the name it is going to sound like that outside eastern europe too, so I am not sure about that name choice at all. Intentional?

Looking at the website it looks like a vibecoded joke, but what do I know.

dawg91 · 2026-02-13T21:19:29 1771017569

I mean it is described somewhat succinctly no? Potentially untrusted tools are isolated from the rest of the system - there were recently some cases of skills for openclaw being used as vectors for malware. This minimizes the adverse effect of potential malicious skills. Also protects from your agent to leaking your secrets left and right - because it has no access to them. Secrets are only supplied when payloads are leaving the host - i.e. the AI never sees your keys.

amluto · 2026-02-13T21:21:39 1771017699

And what do those tools access? How? If I ask the agent to edit a CSV file, what’s the actual workflow? What prevents it from editing a different file due to a prompt injection attack?

dawg91 · 2026-02-13T21:06:01 1771016761

Or you design the sandbox so smartly that is seamless...

dawg91 · 2026-02-13T21:05:36 1771016736

Yes exactly, keys are only injected at host boundary

dawg91 · 2026-02-13T21:04:11 1771016651

Idk this seems to be gaining momentum and with devs being able to leverage their skillset via vibe coding anything seems possible really.

dawg91 · 2026-02-13T21:03:23 1771016603

They do verifiable inference on TEEs for the open source models. The anthropic ones I think they basically proxy for you (also via trusted TEE) so that it cant be tied to you. VPN for LLM inference so to speak.

ramoz · 2026-02-13T21:26:33 1771017993

Can you link to the verifiable inference method?

dawg91 · 2026-02-13T21:30:53 1771018253

https://docs.near.ai/cloud/verification/

dawg91 · 2026-02-13T19:11:39 1771009899

I think the guys who are developing this (Illia Polosoukhin of "Attention is all you need") and others knows enough to leverage their skills with AI vs. producing slop

dawg91 · 2026-02-13T18:16:37 1771006597

Fun fact: it's being developed by one of the authors of "Attention is all you need"

ramoz · 2026-02-13T19:04:05 1771009445

worth mentioning an additional credential/or-not, the creator of "the platform powering the agentic future" (blockchain) https://www.near.org/

edtechdev · 2026-02-13T19:35:39 1771011339

which explains why this tool requires a NEAR AI account to use

RIMR · 2026-02-13T19:59:28 1771012768

I mean, it's literally a repo belonging to NEAR AI.

dawg91 · 2026-02-13T16:52:16 1771001536

It's a hardened, security-first implementation. WASM runtime specifically is for isolating tool sandboxes

verdverm · 2026-02-13T18:50:44 1771008644

WASM has issues with certain languages, why WASM and not OCI?

ForHackernews · 2026-02-13T18:56:24 1771008984

Docker is not a security boundary?

verdverm · 2026-02-13T20:23:10 1771014190

That's defined in context, security is a spectrum with tradeoffs

OCI supports far more and has a much bigger ecosystem