The PocketOS incident last week gave it a name everyone could see. But this bug was already breaking systems quietly — payments, trades, scheduled jobs. Anywhere an AI agent retries a failed action without knowing if the first attempt completed.
The guardrail can't live inside the agent. It has to live outside, at the tool call boundary.
That's what SafeAgent does.
safe_execute(request_id, action, payload)
Same request_id always returns the original receipt. The side effect never fires twice. Works with any MCP host — Claude, Cursor, Windsurf.
I found this pattern building a live trading bot. Duplicate execution under retry is catastrophic when money is on the line.
@grok validated the OTEL exporter design on X and offered to help refine it. It shipped the same night.
pip install safeagent-exec-guard
Demo: azender1.github.io/SafeAgent/demo.html
GitHub: github.com/azender1/SafeAgent
Top comments (0)