Skip to content
View 13ernkastel's full-sized avatar
0 followers · 11 following

Achievements

Achievement: Pair ExtraordinaireAchievement: QuickdrawAchievement: Pull Shark

Achievements

Achievement: Pair ExtraordinaireAchievement: QuickdrawAchievement: Pull Shark

Block or report 13ernkastel

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
13ernkastel/README.md

header

typing intro

merged prs repositories linkedin

Summary

I work on AI agent security, retrieval, and backend hardening, with a focus on fixes that are reproducible, tested, and backed by clear writeups. Most of my recent work is around trust boundaries in agent systems, including shell execution, memory, file handling, network access, and auth.

Focus areas

  • AI agent and developer-platform security: host-shell escape, stored XSS, SSRF, prompt poisoning, command injection, path traversal, and unauthenticated API exposure.
  • Retrieval and context systems: search plumbing, tags-based cross-subtree retrieval, safer memory and resource access paths, and agent-facing RAG improvements.
  • Backend hardening: auth boundaries, file handling, archive validation, network safeguards, and safer runtime defaults.
  • Delivery around fixes: focused tests, lint and CI cleanup, reproducible writeups, and remediation PRs.

Main tech

My Skills

I spend most of my time in Python, JavaScript, and TypeScript codebases, usually around FastAPI-style backends, agent runtimes, retrieval systems, sandboxes, and CI pipelines.

GitHub stats

GitHub stats Top languages

Selected work

Project What I worked on Link
deer-flow Critical host-shell escape remediation in LocalSandboxProvider #1547
OpenViking Enforced authentication on bot proxy chat endpoints #996
deer-flow Stored XSS mitigation for artifact rendering and download handling #1389
OpenViking Rejected unsafe ZIP member paths during .ovpack import #344
deer-flow Security review and safe download enforcement work in the fork-to-upstream fix path #2

Repos I spend time in

OpenViking deer-flow NemoClaw Trae Agent

footer

Popular repositories Loading

  1. ai ai Public

    Forked from vercel/ai

    The AI Toolkit for TypeScript. From the creators of Next.js, the AI SDK is a free open-source library for building AI-powered applications and agents

    TypeScript

  2. Security-Detections-MCP Security-Detections-MCP Public

    Forked from MHaggis/Security-Detections-MCP

    MCP to help Defenders Detection Engineer Harder and Smarter

    TypeScript

  3. PatchEval PatchEval Public

    Forked from bytedance/PatchEval

    PatchEval: A New Benchmark for Evaluating LLMs on Patching Real-World Vulnerabilities

    Python

  4. deer-flow deer-flow Public

    Forked from bytedance/deer-flow

    An open-source long-horizon SuperAgent harness that researches, codes, and creates. With the help of sandboxes, memories, tools, skill, subagents and message gateway, it handles different levels of…

    Python

  5. OpenViking OpenViking Public

    Forked from volcengine/OpenViking

    OpenViking is an open-source context database designed specifically for AI Agents(such as openclaw). OpenViking unifies the management of context (memory, resources, and skills) that Agents need th…

    Python

  6. trae-agent trae-agent Public

    Forked from bytedance/trae-agent

    Trae Agent is an LLM-based agent for general purpose software engineering tasks.

    Python