We let an AI agent execute Bash and lived to talk about it
PostHog's Wizard agent can read your codebase, install packages, and run shell commands on your laptop. Yes, on purpose. This talk covers how we went from "defense-in-hope" to a standalone, robust security service. It'll highlight results from a pentest that made us question our life choices, an internal audit that challenged our architecture, and the debate over how to secure the entire pipeline. You'll learn why "scan-then-trust" is a weaker model than you think, what it takes to build kill switches you hope you never use, and what happens when you pentest an AI agent that has access to Bash.
About the Harness Engineering Track
Harness Engineering sessions at AI Engineer World's Fair 2026 in San Francisco.
When
Thursday, July 2, 2026
2:25 PM - 2:45 PM·20m
Where
Main Stage
Capacity: 4000 attendees
Sign in to add this talk to your schedule.
Speaker
Sarah Sanders
PostHog
Context Engineer at PostHog building and securing AI agents