fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

8 stars 5 forks 8 watchers Go Apache License 2.0
agent agent-security agentic-ai ai-agents ai-safety ai-security capability-security firewall golang inference kv-cache llm llm-agents llm-inference llm-serving llmops mcp prompt-injection self-hosted tool-poisoning
90 Open Issues Need Help Last updated: Jul 1, 2026

Open Issues Need Help

View All on GitHub
enhancement help wanted integration observability priority/P1 substrate track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving observability performance priority/P1 track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement good first issue substrate track/C-gpu-backend gen/next

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving agentl3 epic priority/P1 substrate trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving performance priority/P1 prompt-caching track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted epic orchestration priority/P1 substrate

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted coverage priority/P1 substrate testing track/E-testing-quality

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted ci-cd priority/P1 substrate track/G-foundation

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted benchmark priority/P1 substrate track/G-foundation

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted epic gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving epic performance priority/P0 substrate track/G-foundation

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving compute model-arch multi-gpu priority/P1 track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving openai-api performance priority/P1 track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving epic priority/P1 substrate trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted epic model orchestration priority/P1 model-routing

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving batching performance priority/P1 track/B-performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving batching performance priority/P1 track/B-performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving performance priority/P1 prompt-caching track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted cuda gpu performance priority/P1 track/B-performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu metal performance priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
documentation good first issue priority/P2 substrate

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted benchmark loader priority/P1 track/C-gpu-backend

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving priority/P1 security substrate track/A-model-support trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving priority/P1 track/F-integration-tooling trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving deployment priority/P1 substrate track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving integration priority/P1 prompt-caching track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agent-framework agentic-serving autogen integration priority/P1 track/D-agent-framework

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agent-framework agentic-serving crewai integration priority/P1 track/D-agent-framework

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving batching integration performance priority/P1 track/B-performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted model performance priority/P1 speculative-decoding track/B-performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted model model-support moe priority/P1 track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted model model-support priority/P1 qwen track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted model model-support priority/P1 quantization track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted model model-support priority/P1 quantization track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving priority/P1 security model-routing

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted orchestration priority/P1 substrate

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted orchestration priority/P1 substrate

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted orchestration priority/P1 substrate

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted orchestration priority/P1 trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving epic priority/P1 prompt-caching

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted observability priority/P1 substrate testing

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted model-arch pagedattention priority/P1 research track/B-performance trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted compute pagedattention performance priority/P1 track/B-performance trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving agentl3 priority/P1 substrate trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving priority/P1 trust-floor

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted model-arch priority/P1

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted agentic-serving performance priority/P1 research

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted compute model model-arch performance priority/P1

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted loader model model-arch performance priority/P1

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agent-framework agentic-serving benchmark priority/P0 track/D-agent-framework

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted gpu performance priority/P0 track/B-performance vulkan

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
help wanted cuda gpu performance priority/P0 track/B-performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted loader model-support priority/P0 track/A-model-support ux

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted llama model model-support priority/P0 track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted agentic-serving priority/P0 substrate track/F-integration-tooling

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
enhancement help wanted gpu multi-gpu performance priority/P0 track/A-model-support

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning
documentation enhancement help wanted agentic-serving performance

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning

fak — the Fused Agent Kernel: treat the model like an untrusted program and the tool call like a syscall. One Go binary — a default-deny capability gate the model can't talk past, plus an addressable, bit-exact KV cache.

Go
#agent#agent-security#agentic-ai#ai-agents#ai-safety#ai-security#capability-security#firewall#golang#inference#kv-cache#llm#llm-agents#llm-inference#llm-serving#llmops#mcp#prompt-injection#self-hosted#tool-poisoning