HN Reader

Thunder Compute (YC S24) Is Hiring (ycombinator.com)

1 points by cpeterson42 6h ago 0 comments

Deepnote (YC S19) is hiring engineers to build a better Jupyter notebook (deepnote.com)

1 points by Equiet 11h ago 0 comments

Prosper AI (YC S23) Is Hiring Founding Account Executives (NYC) (jobs.ashbyhq.com)

1 points by XDGC 1d ago 0 comments

The Forecasting Company (YC S24) Is Hiring a Software Engineer (ycombinator.com)

1 points by jfainberg 1d ago 0 comments

Lago – Open-Source Usage Based Billing – Is Hiring in Sales, Eng, Ops (EU, US) (ycombinator.com)

1 points by AnhTho_FR 2d ago 0 comments

Ember (YC F24) Is Hiring Full Stack Engineer (ycombinator.com)

1 points by charlene-wang 2d ago 0 comments

LiteLLM (YC W23) is hiring a back end engineer (ycombinator.com)

1 points by detente18 3d ago 0 comments

SigNoz (YC W21, Open Source Datadog) Is Hiring Platform Engineers (Remote) (jobs.ashbyhq.com)

1 points by pranay01 3d ago 0 comments

Motion (YC W20) Is Hiring Principal Software Engineers (jobs.ashbyhq.com)

1 points by ethanyu94 6d ago 0 comments

Bild AI (YC W25) Is Hiring an Applied AI Engineer (workatastartup.com)

1 points by rooppal 6d ago 0 comments

Text.ai (YC X25) Is Hiring Founding Full-Stack Engineer (ycombinator.com)

1 points by RushiSushi 8d ago 0 comments

Cua (YC X25) is hiring design engineers in SF (ycombinator.com)

1 points by frabonacci 8d ago 0 comments

Activeloop (YC S18) Is Hiring Member of Technical Staff – Back End Engineering (careers.activeloop.ai)

1 points by davidbuniat 8d ago 0 comments

Coris (YC S22) Is Hiring (ycombinator.com)

1 points by smaddali 9d ago 0 comments

14.ai (YC W24) is hiring engineers in SF to build an AI-native Zendesk (14.ai)

1 points by michaelfester 9d ago 0 comments

Spice Data (YC S19) Is Hiring a Product Associate (New Grad) (ycombinator.com)

1 points by richard_pepper 11d ago 0 comments

Ashby (YC W19) Is Hiring Design Engineers in AMER and EMEA (ashbyhq.com)

1 points by abhikp 13d ago 0 comments

EasyPost (YC S13) Is Hiring (easypost.com)

1 points by jstreebin 14d ago 0 comments

Tesorio (YC S15) Is Hiring a Senior GenAI Engineer (100% Remote) (tesorio.com)

1 points by FabioFleitas 14d ago 0 comments

OneSignal (YC S11) Is Hiring Engineers (onesignal.com)

1 points by gdeglin 15d ago 0 comments

Axle (YC S22) is hiring product engineers (ycombinator.com)

1 points by niharparikh 15d ago 0 comments

Mbodi AI (YC X25) Is Hiring a Founding Research Engineer (Robotics) (ycombinator.com)

1 points by chitianhao 15d ago 0 comments

ReadMe (YC W15) Is Hiring a Developer Experience PM (readme.com)

1 points by gkoberger 16d ago 0 comments

Weave (YC W25) is hiring a founding AI engineer (ycombinator.com)

1 points by adchurch 17d ago 0 comments

Depot (YC W23) Is Hiring a Community and Events Manager (Remote) (ycombinator.com)

1 points by jacobwg 17d ago 0 comments

CoLoop (YC S21) Is Hiring AI Engineers in London

1 points by mrlowlevel 17d ago 0 comments

Trellis (YC W24) Is Hiring: Automate Prior Auth in Healthcare (ycombinator.com)

1 points by jackylin 18d ago 0 comments

Type (YC W23) is hiring a founding engineer to build an AI-native doc editor (ycombinator.com)

1 points by stewfortier 19d ago 0 comments

Foundry (YC F24) is hiring staff-level product engineers (ycombinator.com)

1 points by lakabimanil 22d ago 0 comments

GoGoGrandparent (YC S16) Is Hiring Back End and Full-Stack Engineers

1 points by davidchl 22d ago 0 comments

Kyber (YC W23) is hiring enterprise account executives (ycombinator.com)

1 points by asontha 24d ago 0 comments

Show HN: RAG Firewall – retrieval-time guardrails for LangChain/LlamaIndex

1 talbuilds 1 8/29/2025, 7:48:12 PM github.com ↗
RAG pipelines are great, but they can still retrieve "toxic" chunks: – prompt injection attempts – leaked API keys/secrets – stale or conflicting content – unapproved external URLs

We built an open-source "retrieval firewall" that scans chunks before they reach the LLM: – denies injection & secrets – flags/reranks PII, encoded blobs, untrusted URLs – audit log (JSONL) of all decisions – drop-in wrappers for LangChain and LlamaIndex retrievers

Install: pip install rag-firewall Repo: https://github.com/taladari/rag-firewall

Curious if others here handle retrieval-time risks, or just ingest/output filtering. Would love feedback and red-team payloads.

Comments (1)

talbuilds · 1h ago
A couple of extra notes I didn’t fit in the main post:

– The firewall runs entirely client-side, so no data ever leaves your environment.

– It focuses on *retrieval-time* risks, not output moderation — so the LLM never sees poisoned chunks in the first place.

– Policies are YAML: you can choose to deny, allow, or just re-rank risky docs (based on recency, provenance, relevance).

– Overhead is low: scanners are regex/heuristic, so for ~5–20 chunks it adds only a few ms.

I’d love feedback on two things in particular:

1. Do you think retrieval-time filtering belongs in the pipeline, or should it all be done at ingest/output?

2. If you’ve got prompt injection payloads or edge cases you use to test your own RAG stacks, I’d love to try them against this.

Thanks for taking a look — always happy to hear critique, especially from folks running LangChain/LlamaIndex in production.