Prismor

Verified account

@prismor_dev

Supply Chain and AI Security Autopilot. Open Sourced

San Francisco, CA

Joined October 2025

705 Following

473 Followers

2.4K Posts

Pinned Tweet

18 days ago

Prismor is a self-improving security layer for AI agents and modern supply chain defense Developers don't need a new SaaS, the future of secure software development is all local Prismor lets you: - redact secrets so agents dont read them - secure supply chain package consumption - skill and mcp scanning for prompt injection - scan and fix vulnerabilities (safely and validated) - all agent executions in a local self-serve dashboard All open source!

5

22

2

23

25K

about 6 hours ago

@MatthewBerman Cool! since skills can be easily poisoned if referenced externally! We'd say every company needs an immunity-agent so agent trust is 📈 https://t.co/SSBqCmtrNj

0

0

0

0

97

about 7 hours ago

@igorfomich that drift-detection seems stronger than what we do today. our vault is file level with 0600 perms and session level audit logging but we don't hash/sign individual secret files or watch for out of band mutation yet but have plans

0

1

0

0

9

1 day ago

Traditional IAM: you prove who you are. Agent IAM: you prove who you are, what you're doing, why you're doing it, who asked you to, and whether the chain of delegation from human to orchestrator to sub-agent to tool was ever broken Hence we added IAM feature to immunity-agent, so enterprises can customize as they want. Before any tool call executes: agent roles with explicit allow/deny lists, secrets and full protection. Users can even scope their agent commands so it doesn't go out of the guardrails We're starting this with local first controls open source

prismor_dev's tweet photo. Traditional IAM: you prove who you are.

Agent IAM: you prove who you are, what you're doing, why you're doing it, who asked you to, and whether the chain of delegation from human to orchestrator to sub-agent to tool was ever broken

Hence we added IAM feature to immunity-agent, so enterprises can customize as they want. Before any tool call executes: agent roles with explicit allow/deny lists, secrets and full protection. Users can even scope their agent commands so it doesn't go out of the guardrails

We're starting this with local first controls open source

2

1

0

0

146

about 8 hours ago

@igorfomich Rotation works the same as its in a file-level and gets live immediately. Sub agents gets the same protection

1

0

0

0

11

about 17 hours ago

https://t.co/ubsxAffnrX

0

0

0

0

14

about 17 hours ago

Nice try lin! Blocked by: https://t.co/SSBqCmtrNj

prismor_dev's tweet photo. Nice try lin!
Blocked by: https://t.co/SSBqCmtrNj https://t.co/JAKqjhUj9b

1

2

0

0

26

about 21 hours ago

@aaron_epstein Might be related to GDP contribution

0

0

0

0

31

1 day ago

@Polymarket They're all buying in

0

1

0

0

222

1 day ago

@Chain_GPT @lagrangedev @AIVM_Network built a zero trust layer: https://t.co/dBFMhOnxX0

0

0

0

0

35

1 day ago

@sonicaghi Fair, we think agents should also have scope so context doesn't overflow https://t.co/D1gUe9A7sH

1 day ago

Traditional IAM: you prove who you are. Agent IAM: you prove who you are, what you're doing, why you're doing it, who asked you to, and whether the chain of delegation from human to orchestrator to sub-agent to tool was ever broken Hence we added IAM feature to immunity-agent, so enterprises can customize as they want. Before any tool call executes: agent roles with explicit allow/deny lists, secrets and full protection. Users can even scope their agent commands so it doesn't go out of the guardrails We're starting this with local first controls open source

prismor_dev's tweet photo. Traditional IAM: you prove who you are.

Agent IAM: you prove who you are, what you're doing, why you're doing it, who asked you to, and whether the chain of delegation from human to orchestrator to sub-agent to tool was ever broken

Hence we added IAM feature to immunity-agent, so enterprises can customize as they want. Before any tool call executes: agent roles with explicit allow/deny lists, secrets and full protection. Users can even scope their agent commands so it doesn't go out of the guardrails

We're starting this with local first controls open source

2

1

0

0

146

0

1

0

0

46

1 day ago

@Concordium @PeterMarirosans @ChrisJourdan Bets post we saw today! We added some thoughts here: https://t.co/D1gUe9A7sH

1 day ago

Traditional IAM: you prove who you are. Agent IAM: you prove who you are, what you're doing, why you're doing it, who asked you to, and whether the chain of delegation from human to orchestrator to sub-agent to tool was ever broken Hence we added IAM feature to immunity-agent, so enterprises can customize as they want. Before any tool call executes: agent roles with explicit allow/deny lists, secrets and full protection. Users can even scope their agent commands so it doesn't go out of the guardrails We're starting this with local first controls open source

prismor_dev's tweet photo. Traditional IAM: you prove who you are.

Agent IAM: you prove who you are, what you're doing, why you're doing it, who asked you to, and whether the chain of delegation from human to orchestrator to sub-agent to tool was ever broken

Hence we added IAM feature to immunity-agent, so enterprises can customize as they want. Before any tool call executes: agent roles with explicit allow/deny lists, secrets and full protection. Users can even scope their agent commands so it doesn't go out of the guardrails

We're starting this with local first controls open source

2

1

0

0

146

0

0

0

0

47

1 day ago

Open for community contribution! #AiSecurity https://t.co/dBFMhOnxX0

prismor_dev's tweet photo. Open for community contribution! #AiSecurity
https://t.co/dBFMhOnxX0 https://t.co/vY0eFPxaPB

0

0

0

0

25

1 day ago

@1clawAI @SpritzChat This is awesome! We need the industry to secure the boring invisible layer

0

2

0

0

50

1 day ago

@nicorodrigues__ This is wild!

0

0

0

0

24

1 day ago

@Dinosn Or use immunity-agent. No sign-ups! https://t.co/dBFMhOnxX0

0

0

0

0

46

1 day ago

@kristovatlas @AISecHub Thanks for sharing!

0

1

0

0

22

1 day ago

@OpenHackAI Great! congrats on the launch @ananayarora

0

3

0

0

112

1 day ago

@anton_chuvakin @Gartner_inc 30% might be an understatement but we'll give it to Gartner. Fair enough

0

0

0

0

46

2 days ago

https://t.co/160HpXLD8i

0

0

0

0

23

2 days ago

Your AI coding agent now blocks access to cloud credential endpoints, catches personal data (SSNs, card numbers) showing up where it shouldn't, and ignores anyone trying to hijack its instructions mid-session Add one line to your config. That's the whole setup pip install immunity-agent

2

0

0

0

57

Last Seen Users on Sotwe

Trends for you

Most Popular Users