AI
Microsoft MXC Preview Is an OS Sandbox for Windows AI Agents
Microsoft introduced the early preview of MXC SDK at Build 2026 to isolate AI-agent code, tools, and plugins through Windows and WSL policy.
AI
Tetrate and Ory bring parameter checks to MCP authorization
Tetrate and Ory announced AI agent authorization that can enforce policy on MCP tool-call request parameters, not just tool visibility.
AI
OpenAI Adds Active Sessions, but Codex CLI Stays Outside Logout
OpenAI Active sessions now shows ChatGPT, Codex, and API sessions, but Codex CLI credentials and connected apps still need separate cleanup.
AI
NetFoundry MCP Gateway closes open ports for AI agents
NetFoundry launched MCP and LLM gateways that bind agent tool access to identity instead of public ports, VPN sprawl, and shared API keys.
AI
codexui-android hit 29,000 downloads, then stole Codex tokens
The codexui-android npm package stole Codex authentication tokens, pushing AI coding-agent security into install, artifact, and egress controls.
AI
Salt Code brings MCP policy enforcement to AI coding assistants
Salt Code connects organizational security policy to AI coding assistants at generation time. The promise is earlier enforcement, not automatic vulnerability removal.
AI
Microsoft Scout Preview Turns Files, Shell, and Mail Into an Always-On Agent Surface
Microsoft Scout is entering Frontier preview as an Autopilot agent that connects files, shell commands, browser automation, and Microsoft 365 work data.
AI
Workday Agent Passport gives HR and finance agents a verification layer
Workday introduced Developer Agent, Agent-Ready Tools, and Agent Passport. The news is less about faster app generation than governed HR and finance agent actions.
AI
Microsoft MDASH preview ties 100 agents to Defender validation
Microsoft expanded MDASH preview at Build 2026 with 100+ agents, Defender integration, and vulnerability validation claims.
AI
Claude Code 2.1.161 protects MCP secrets and shell startup files
Claude Code 2.1.161 redacts MCP secrets, while 2.1.160 adds approval prompts before edits to shell, Git, and build-tool configuration.
AI
ChatGPT Sites preview makes internal app deployment a Codex workflow
OpenAI introduced ChatGPT Sites in preview for Business and Enterprise workspaces, turning Codex outputs into shared internal apps with new governance questions.
AI
In 14 AI coding sessions, zero first prompts asked for security
A SOUPS 2026 paper observed that AI coding assistants push security from upfront requirements into after-the-fact review.