← Back to Product Feed

Hacker News Show HN: Agent that refuses to run commands without human approval

An agent designed for AI safety, specifically refusing to run commands without human approval, contrasting with autonomous agents.

10
Traction Score
2
Discussions
Apr 30, 2026
Launch Date
View Origin Link

Product Positioning & Context

AI Executive Synthesis
An agent designed for AI safety, specifically refusing to run commands without human approval, contrasting with autonomous agents.
Fewshell directly addresses the critical enterprise concern of AI safety and control, particularly in production environments. The explicit design choice to 'refuse to run commands without human approval' and the absence of an auto-approval setting directly mitigates risks highlighted by recent incidents like database deletion. This positions Fewshell as a crucial guardrail for integrating AI agents into sensitive operational workflows. The market demands solutions that balance AI utility with robust safety mechanisms. Fewshell represents a necessary component in an enterprise AI stack, ensuring human oversight and preventing unintended destructive actions, thereby building trust in agentic systems.
In light of recent news about an agent deleting a production database, I thought now would be a good time to share this.As the use of AI tools in production is becoming more common, sadly so will the high profile incidents like the one mentioned.Fewshell is a terminal agent specifically designed to avoid this.There is no setting to enable command auto-approval. This is by-design, so that the user never has to second-guess or worry about accidentally having it enabled.Originally my intention was to build an AI mobile terminal to make typing shell commands easy. But with so many mobile-enabled 'claw' agents being available, I decided to make Fewshell the opposite of an autonomous agent.Please star if you like, let me know what you think. Happy to answer questions.About me: I'm an ex Amazon Sr. SDE for Alexa AI, and currently am working in AI safety research for agentic RLVR. I use this tool to run and check on my lab experiments.
terminal agent command auto-approval AI safety research agentic RLVR mobile-enabled 'claw' agents

Related Ecosystem & Alternatives

Discover adjacent products, open-source repositories, and developer tools sharing similar technical architecture.

Product Hunt
Memori
Persistent memory from agent trace, not just conversation
Product Hunt
SpotsNow
Track who's advertising across podcasts w/ campaign insights
Hacker News
Show HN: Open-source alternative to D...
I built an open-source tool for learning anything using AI:- Type what you want to lear...
Hacker News
Show HN: VAEN – Package and import po...
Hi HN, I built VAEN (an open source CLI) because I kept running into a boring problem w...
GitHub
instructkr/claw-code
The repo is finally unlocked. enjoy the party! The fastest repo in history to surpass 1...
GitHub
milla-jovovich/mempalace
The best-benchmarked open-source AI memory system. And it's free.

Deep-Dive FAQs

What is Agent that refuses to run commands without human approval?
Agent that refuses to run commands without human approval is analyzed by our AI as: An agent designed for AI safety, specifically refusing to run commands without human approval, contrasting with autonomous agents.. It focuses on Fewshell directly addresses the critical enterprise concern of AI safety and control, particularly in production environments. The explicit design ...
Where did Agent that refuses to run commands without human approval originate?
Data for Agent that refuses to run commands without human approval was aggregated directly from the Hacker News community ecosystem, representing raw developer and early-adopter sentiment.
When was Agent that refuses to run commands without human approval publicly launched?
The initial public indexing or launch date for Agent that refuses to run commands without human approval within our tracked developer communities was recorded on April 30, 2026.
How popular is Agent that refuses to run commands without human approval?
Agent that refuses to run commands without human approval has achieved measurable traction, logging over 10 traction score and facilitating 2 recorded discussions or engagements.
Which technical categories define Agent that refuses to run commands without human approval?
Based on metadata extraction, Agent that refuses to run commands without human approval is categorized under topics such as: terminal agent, command auto-approval, AI safety research, agentic RLVR.
What are some commercial alternatives to Agent that refuses to run commands without human approval?
Our semantic intelligence engine identifies potential commercial alternatives in the SaaS space, such as Memori, which offers overlapping value propositions.
How does the creator describe Agent that refuses to run commands without human approval?
The original author or development team describes the product as follows: "In light of recent news about an agent deleting a production database, I thought now would be a good time to share this.As the use of AI tools in production is becoming more common, sadly so will t..."

Community Voice & Feedback

moritzwarhier • May 2, 2026
I refuse to read this, on behalf of my agent.
seed867 • May 2, 2026
[flagged]
natloz • May 1, 2026
I feel this is not the trajectory we want to go with automation. Perhaps better checks and balances within the automation, or "thresholds" that trip breakers would be a good approach?
ajaystream • Apr 30, 2026
[flagged]
embedding-shape • Apr 30, 2026
Maybe it's just me, but if I had to approve each command of the agent, that'd remove 90% of the benefits of using an agent in the first place. Almost the whole point is that I can fire off a prompt, it can do whatever and then I come back later.Instead, wrap the agent in a way so it cannot destroy stuff in the first place. And if you still want it to "be able to destroy databases in production", do so by copy-pasting stuff out of the isolated environment. I've run codex as root, as "dangerously as possible" with zero approvals, since the launch of the TUI, and never hit a snag, because the agent literally don't have access to snag things up.Agents WILL make mistakes, it's up to you to set things up in a way that you don't get utterly fucked when that eventually happens. Avoiding adding 10s of MCPs tools, avoiding authenticating with all platforms, services and databases and not giving it access to all directories on your computer solves 99% of the issues people are having, and there are numerous of simple ways of doing this.
hasperdi • Apr 30, 2026
Numerous prompting will cause prompt fatigue, similar to pressing yes on a dialog boxes.LLM, like fire is a powerful tool. Some people play with fire and achieved great things, some play with fire and got burned. A number of them achieved great things and got burned. We need to understand that and learn from our mistakes.
Remi_Etien • Apr 30, 2026
[flagged]

Discovery Source

Hacker News Hacker News

Aggregated via automated community intelligence tracking.

Tech Stack Dependencies

No direct open-source NPM package mentions detected in the product documentation.

Media Tractions & Mentions

No mainstream media stories specifically mentioning this product name have been intercepted yet.

Deep Research & Science

No direct peer-reviewed scientific literature matched with this product's architecture.