2026-05-11

Denoise · Twitter

AI agents are industrializing, with new developer tools and infra hardening in parallel with public disclosures of sophisticated security vulnerabilities.

Pay attention to the dual tracks of agent development: major labs are shipping agent-native tools like Claude Code and the OpenAI SDK while simultaneously publishing red-team findings on agent security.

2026-05-112026-05-11T12:16:58Zrules twitter-v1Healthytweets 25signals 25

Top 3 changes

  • Anthropic / AI Coding: The release of Claude Code 1.5, a terminal-native agent, signals a major push to shift developer workflows from IDEs to conversational interfaces.
  • OpenAI / AI Infra: A new agent SDK provides protocol-level primitives for tool calling and orchestration, aiming to standardize the agent development stack.
  • Anthropic & Google DeepMind / Security: Major labs are responsibly disclosing complex agent jailbreaks, showing that security research is maturing alongside agent capabilities.

Strategic insights

#01The agent infrastructure layer is rapidly standardizing around the 'durable worker' primitive, with OpenAI, Vercel, and Replit all shipping competing orchestration and deployment tools.
#02The developer's editor is the new battleground. @karpathy's framing of the IDE-to-terminal-agent shift, validated by user reports on Claude Code, suggests a fundamental change in coding workflows.
#03A tense co-evolution is underway between agent capabilities and security. Public releases of powerful agent tools from Anthropic and OpenAI are immediately followed by equally public red-team disclosures, creating a feedback loop.
#04The concept of RAG is being replaced by a more sophisticated 'context engineering' discipline. Practitioners like @GregKamradt and tools like @mem0ai are moving beyond simple vector retrieval to complex memory management and caching strategies.

Categories

Security & Reverse Engineering(3)

The focus of agent security is escalating from simple prompt injections to complex orchestration-level vulnerabilities, as highlighted by both Anthropic and @AlexAlbert__.

Major labs like Anthropic and Google DeepMind are publicly disclosing agent jailbreaks and red-teaming frameworks for autonomous systems.

  • Anthropic@AnthropicAIrising

    Responsible disclosure on a Claude jailbreak chain we patched last week. Full write-up including our red team timeline.

    5.2k910" 160220· score 7.5k· +1 related
  • Google DeepMind@GoogleDeepMindrising

    New red team framework for prompt injection in autonomous agents. Covers cross-tool leakage, scanner evasion, and sandbox escape patterns.

    880140" 1838· score 1.2k
  • MalwareTech@MalwareTechBlogrepeated

    Autonomous agent running pentest flows against a real SaaS. First real-world run: fewer false positives than I expected on the vulnerability surface.

    18028" 315· score 245

AI Coding Tools & Agents(5)

@karpathy's observation about the shift from IDE to terminal agents is being tested in real-time, with benchmarks from @swyx and adoption reports from @levelsio.

Anthropic's release of Claude Code 1.5, a terminal-based agent, is driving conversations about its performance and a potential paradigm shift in developer workflows.

  • Anthropic@AnthropicAIrising

    Claude Code 1.5 is live. Terminal-native coding agent with full Claude Opus reasoning, file-ops sandbox, and session replay.

    4.8k820" 140190· score 6.9k· +1 related
  • Andrej Karpathy@karpathyrising

    The developer-experience shift from IDE to terminal agent is underrated. Coding workflows are about to look nothing like 2024.

    3.4k510" 30140· score 4.5k
  • swyx@swyxrising

    Codex vs Claude Code terminal agent benchmarks. Pass@1 diverges more than I expected on the long-context editor tasks.

    1.1k180" 2260· score 1.6k
  • DSPy@dspy_airising

    DSPy 3.0: prompt optimization via compile-time search over system prompt variations. Benchmarks inside.

    960150" 1242· score 1.3k
  • @levelsio@levelsiorising

    Switched my whole editor setup to Claude Code this week. Shipping faster than when I used Cursor + Copilot.

    58040" 680· score 678

AI Infra & Protocols(5)

OpenAI's SDK, LangChain's protocol integrations, and Vercel's edge runtime show a clear convergence on standardizing the protocols and infrastructure for multi-agent systems.

A wave of new tools from OpenAI, Vercel, and Replit provides infrastructure for deploying, orchestrating, and managing AI agents as durable background workers.

  • OpenAI@OpenAIrising

    New agent SDK: protocol-level tool calling, deployment harness, and multi-worker orchestration primitives. Docs live.

    4.2k680" 75180· score 5.8k
  • LangChain@LangChainAIrising

    MCP protocol integration thread. How to wire existing LangGraph agents into the Anthropic Model Context Protocol server spec.

    920145" 1448· score 1.3k
  • Vercel@vercelrising

    Edge runtime for agent workers is live. Spawn durable background agents from any serverless deployment.

    54080" 622· score 718
  • Alex Albert@AlexAlbert__rising

    When your security scanner finds nothing scary on an agent deploy, check the orchestration layer again. That's usually where the jailbreak sneaks through.

    42060" 835· score 564
  • Replit@replitrising

    New agent deployment harness. One command to go from local orchestration to hosted agent worker.

    38055" 518· score 505

On-device & Multimodal AI(1)

The release from a major player like Mistral AI underscores the ongoing, capital-intensive effort to build high-quality, licensed datasets, which remains a key moat in multimodal AI.

Mistral AI released a large, cleaned 100M-row web OCR dataset for public use in training models.

  • Mistral AI@MistralAIrising

    Open dataset release: 100M-row web OCR dataset. Cleaned, licensed, ready to train.

    2.6k390" 3088· score 3.5k

Memory, RAG & Context(4)

Practitioners like @GregKamradt and startups like @mem0ai argue that vector search is no longer sufficient, pushing for more structured memory systems like knowledge graphs, as demonstrated by LlamaIndex.

The conversation is shifting from basic RAG to advanced 'context engineering,' exploring cache invalidation in large contexts and new memory architectures.

  • Vaibhav Srivastav@reach_vbrising

    Tested the new 10M context memory window end to end. Surprising failure modes around rag retrieval cache invalidation, thread below.

    1.9k260" 2275· score 2.5k
  • Greg Kamradt@GregKamradtrising

    RAG is dead, long live context engineering. My framework for when to cache, when to retrieve, and when to just dump memory into the prompt.

    820130" 1654· score 1.1k
  • mem0@mem0airising

    Memory layer for agents: differentiating working memory from the subconscious store. Vector index isn't enough anymore.

    48072" 525· score 639
  • LlamaIndex@llamaindexrepeated

    Knowledge graph retrieval walkthrough: when semantic vector search misses, graph hop beats it every time.

    29040" 211· score 376

Other(4)

The pattern of task automation seen in Notion and Linear mirrors the goals of coding agents, suggesting a broader trend of agentic workflows being integrated into SaaS products.

Workspace automation is advancing in parallel with agent development, as Notion and Linear launch features for auto-filling and auto-triaging tasks.

  • Notion@NotionHQrising

    Notion workspace automation is out of beta. Auto-fill tables, chained updates across databases, and a new audit log surface.

    820125" 1238· score 1.1k
  • Linear@linearrising

    Linear now auto-triages incoming issues. Quiet launch, but already our favorite workspace feature of the year.

    46070" 624· score 618
  • Temporal@temporaliorepeated

    Orchestrating agents with durable workflows: replayable, resumable, and multi-worker by default. Walkthrough from our infra team.

    31048" 414· score 418
  • James Clear@jamesclearrepeated

    The best habit tracker is the one you actually open. Three open-source alternatives worth trying.

    28042" 318· score 373

Prompt & Skill Libraries(2)

Weights & Biases is positioning prompt optimization as a formal search problem, moving beyond the anecdotal tricks shared by practitioners like @dotey to a more rigorous, data-driven approach.

Prompt engineering is maturing into a systematic practice, with scaled benchmarking of system prompts becoming a new standard for optimization.

  • dotey@doteyrising

    Five prompt tricks learned this week from reviewing 200 production prompts. Short thread.

    51088" 830· score 710
  • Weights & Biases@weights_biasesrising

    System prompt benchmarking at scale: we ran 40k variants across 6 frontier models. The efficient frontier is not where you think.

    42055" 620· score 548

ML & GPU Infrastructure(1)

@jerryjliu0's focus on filtering synthetic data highlights a critical, non-obvious problem: ensuring that training data for agents improves, rather than poisons, their generalization capabilities.

The discussion on agent training infrastructure centers on the challenges of curating high-quality synthetic data to avoid model degradation.

  • Jerry Liu@jerryjliu0repeated

    Dataset curation for agent training: how we filter synthetic data that looks good but poisons generalization.

    26036" 211· score 338

Recent reports

2026-06-042026-06-032026-06-022026-06-012026-05-312026-05-302026-05-292026-05-282026-05-272026-05-252026-05-242026-05-232026-05-222026-05-212026-05-202026-05-192026-05-182026-05-172026-05-162026-05-152026-05-142026-05-132026-05-122026-05-112026-05-102026-05-092026-05-082026-05-072026-05-062026-05-052026-05-042026-05-032026-05-022026-05-012026-04-302026-04-292026-04-282026-04-272026-04-262026-04-252026-04-242026-04-232026-04-21