OSSCheckpoints — M Seed for AI Code Provenance CLICheckpoints·high signalEx-GitHub CEO Thomas Dohmke's open-source CLI recording AI code reasoning trails. M seed at M valuation. Most well-funded bet on AI code provenance.SourceSource pageCheckpoints↳ Follow the threadPolicy dependency / Stack layerPrismata Confines Cross-Site Prompt Injection by Treating Web Agents Like an XSS ProblemarXivPolicy dependency / Stack layerReason Less, Verify More: Deterministic Gates Catch a Silent Policy-Violation Failure in Tool-Using AgentsarXivPolicy dependency / Stack layerMicrosoft Agent Framework ships early-July releases, promotes github-copilot-sdk to v1.0.0GitHub (Microsoft Agent Framework)Policy dependency / Stack layerKastra Launches Policy Enforcement for Claude Code, Cursor, and CodexHacker NewsStack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivStack layer / Threat patternPick your agent sandbox primitive by threat model: Firecracker microVM vs gVisor vs V8 isolateNorthflankStack layer / Threat patternOpen-Source Multi-Agent Firewall Intercepts Both HTTP(S) and WebSocket LLM TrafficarXivStack layer / Threat patternSnyk's Evo Agentic Development Security Hit GA June 29 — an Enforcement Layer That Polices MCP Servers and Coding Agents at RuntimeSiliconANGLE