Homepage News Details
US-based NanoClaw Partners with JFrog to Secure Software Packages
2026-06-15 16:18
Favorite

en.Wedoany.com Reported - The security agent framework NanoClaw has partnered with JFrog, a software supply chain management platform, enabling AI agents to fetch resources from JFrog's curated registries.

Gavriel Cohen, co-founder of NanoCo AI, announced the partnership at a JFrog event in San Francisco. Cohen explained that a key feature of the Claw agent series is its ability to self-improve by acquiring tools and resources it lacks.

Cohen noted that this approach works well when accessing known local data requires a manual approval process. However, it is not ideal for npm packages. Even with sandboxed and isolated agents like NanoClaw, malicious code within containers can still take harmful actions.

Developers may be unfamiliar with a package and need time to fully assess its legitimacy and whether it has been tampered with. To address this, NanoClaw has integrated with the JFrog registry, ensuring that when agents download new tools and libraries, the resources come from vetted sources, reducing the agents' exposure to untrusted content.

Cohen also announced the availability of the "Agent Factory." This system, developed internally by the company, uses NanoClaw agents to handle pull requests. With the rise of AI coding agents, the volume of pull requests has surged, and the Agent Factory aims to triage them. Cohen pointed out that maintainers struggle to distinguish high-quality contributions from those seeking to build reputation through automated methods.

The Agent Factory is built using NanoClaw and hosted on exe.dev, which provides virtual machines with persistent storage. When a pull request is opened, the factory launches a dedicated worker agent, posts a thread on Slack, and staff triage the changes, review diffs, and propose test plans. All actions require a human click to approve before being triggered.

Cohen believes there are risks in handling pull requests containing prompt injections or unsafe code. Anyone using and configuring AI agents in a development environment may see instructions in configuration files like Claude.md that prohibit executing dangerous operations. He emphasized that instructions help guide agents to produce valuable output but are not a security mechanism. The only way to prevent an agent from taking undesired actions is to prohibit the action itself, not merely to give instructions.

This article is compiled by Wedoany. All AI citations must indicate the source as "Wedoany". If there is any infringement or other issues, please notify us promptly, and we will modify or delete it accordingly. Email: news@wedoany.com

America
Information and CommunicationSoftware EngineeringInformation Security and Data Security Engineering
Previous:AWS Deploys RNG Network Topology in the US, Boosting Performance by Approximately 33% and Energy Efficiency by Up to 40%
Next:University of Ghana Vice-Chancellor Calls for Integration of African Languages and Indigenous Knowledge in AI Development
Related Products
Negotiable
Intelligent Operations and Maintenance Solutions
Chengdu Yunda Technology Co., Ltd.
Negotiable
Direct Burial Cable GYHTY53
ETERN GROUP COMPANY LIMITED
Negotiable /Unit
Multi-function Marine Monitoring Low-altitude Detection Radar Sea-air Boundary Ocean Dynamic Environment Measurement
Chengdu Dixin Technology Co., Ltd.
Negotiable
Ka&Ku Dual-Band Integrated BUC
COXSAT TECHNOLOGY CO., LTD.
Negotiable
SIS Safety Instrumentation Solution
Beijing Consen Automation Technology Co., Ltd.
Negotiable /Set
Bolande Application Server Software V9.5
Beijing Baolande Software Corporation
Negotiable
Unmanned Driving FAO
UniTTEC Co., Ltd.
Negotiable
Wireless LAN | AirEngine 5776-56T Access Point
Huawei
Negotiable
Single-mode Fiber G.652B
SHENZHEN SDG INFORMATION CO., LTD.
Negotiable
Neolix X3 Autonomous Delivery Vehicle
Neolix Beijing Technology Co., Ltd.
Negotiable
Intelligent Warehousing
Jiangsu Zhongtian Technology Co., Ltd.
Negotiable /Set
GNSS
Kingmach Measurement & Monitoring Technology Co., Ltd.
Related Recommendations
Slovenia's ELES Joins EU AI Grid Model Project
2026-06-15
IEC Telecom Establishes Local Company in Indonesia to Expand Satellite Connectivity Services
2026-06-15
India's TRAI Drives V2X Communication Rules to Reshape Smart Highway Connectivity
2026-06-15
India's TCS Partners with Anthropic to Scale Enterprise Generative AI Deployment
2026-06-15
Philippine Department of Science and Technology to Pilot Intelligent Traffic System for Emergency Vehicles
2026-06-15
Philippine Department of Science and Technology to Pilot Intelligent Traffic System for Emergency Vehicles
2026-06-15
Alibaba Cloud Launches Johor Public Cloud Region in Malaysia
2026-06-15
China's Songyan Power Launches OpenHarmony-Powered N2 Consumer-Grade Humanoid Robot
2026-06-15
Manz Asia Successfully Delivers World's First 310mm Panel-Level Packaging ECD Mass Production System
2026-06-15
Westwell Expands Air Cargo Operations with AI + New Energy Strategy
2026-06-15
Lastest Bulletin
1
China's XCMG Unveils Zero-Carbon Smart Mining Solution in Kazakhstan
2
China Bans Transfer of Mining Rights Obtained Through Agreement Within Five Years
3
Slovenia's ELES Joins EU AI Grid Model Project
4
Accident Halts Production at Kootenay Silver's Columba Silver Project in Mexico
5
Canadian Mining Company Hemlo Mining Shareholders Approve Redomiciliation and TSX Uplisting
6
FedEx Launches Bundaberg Logistics Facility in Australia, Processing 1,500 Packages Per Hour
7
In 2026, Saarland, Germany, tests 44 Flirt Akku battery trains
8
U.S. Department of Transportation Releases $626.7 Million in Multimodal Grants in June 2026
9
China's Zoomlion Secures Over 1 Billion Yuan in Orders at KOMATEK, Deepening Presence in Turkey
10
Seven Pacific Island Nations Sign Charter to Jointly Reform Domestic Shipping