Back to Agents
sandspy
sagarrroy March 29, 2026
4 copies 0 downloads
Real-time security monitor for AI coding agents. See what Claude Code, Cursor, Codex, and others actually do on your machine.
Agent Definition
<div align="center"> <h1>sandspy</h1> <p><strong>Zero-Friction Security Telemetry for Autonomous AI Agents</strong></p> <a href="https://crates.io/crates/sandspy"><img src="https://img.shields.io/crates/v/sandspy.svg?style=for-the-badge&color=2BB4AB" alt="Crates.io"></a> <a href="https://github.com/sagarrroy/sandspy/actions"><img src="https://img.shields.io/github/actions/workflow/status/sagarrroy/sandspy/ci.yml?branch=main&style=for-the-badge&color=2BB4AB" alt="CI Status"></a> <a href="https://github.com/sagarrroy/sandspy/blob/main/LICENSE"><img src="https://img.shields.io/badge/license-MIT-blue.svg?style=for-the-badge&color=2BB4AB" alt="License"></a> <img src="https://img.shields.io/badge/Discord-icedcappus-5865F2?style=for-the-badge&logo=discord&logoColor=white" alt="Discord: icedcappus"> </div> --- ### The Problem Autonomous AI coding agents like Cursor, Windsurf, Claude Code, and Aider accelerate are being used exponentially, by almost everyone. However, these tools require local shell execution and extensive filesystem access to function optimally, and new engineers and vibe coders are often oblivious to the issues that can happen if these agents are left unchecked. **This introduces an enormous blind spot.** When an agent is navigating your machine at 1,000 WPM, it becomes nearly impossible to verify structurally safe behavior: - What `.env` config files or SSH keys did it read? - Did it accidentally copy your Stripe tokens into the systemic clipboard? - Did a community script or CLI tool ping an unknown external telemetry server? - Did it fall for a prompt injection attack and dumped your `.env` file on some remote unknown server? **sandspy visualizes the invisible.** It is a lightweight, background sensor designed specifically to audit AI coding agents in real-time, giving you total peace of mind without slowing down your development. <br> <div align="center"> <img src="assets/dashboard.png" alt="sandspy TUI Dashboard in Action" wid
Comments
More Agents
View alldocumentation
Documentation & Onboarding Agent
Agent that generates comprehensive documentation, API references, architecture diagrams, and developer onboarding guides from existing code.
C
Communitydebugging
Cursor Bug Triage Agent
Agent configuration for systematic bug investigation that traces issues from error logs through the codebase to root cause with suggested fixes.
C
Communityapi
API Integration Agent
Agent for integrating third-party APIs including SDK setup, type generation, error handling, retry logic, and rate limit management.
C
Communitycoding
Cursor Agent Mode
Cursor's built-in autonomous coding agent that can make multi-file edits, run terminal commands, search the codebase, and iteratively build features with minimal human intervention.
C
Cursor Teamcloud
Cursor Background Agent
Cloud-based autonomous coding agent that runs in the background on remote sandboxed environments, handling complex multi-step tasks while you continue working.
C
Cursor Teamcomposer
Cursor Composer Agent
Cursor's multi-file editing agent within Composer mode that can create, edit, and delete files across your entire project in a single conversation.
C
Cursor Team