LocalFirst – I built a harness for my AI tool proxy, found 2 bypasses
Developer lbrauer has released LocalFirst, a tool designed to act as a local proxy for AI coding agents, enforcing custom policies on what data can be passed between the agent and cloud models. The tool allows for actions like blocking specific paths, redacting secrets, and transforming output to manage data flow. A new testing harness for LocalFirst uncovered two bypasses related to how Claude Code injects context, which have since been addressed by adding a second enforcement gate. AI
IMPACT Provides developers with a tool to enforce organizational policies on AI coding agents, enhancing data security and control.