Signal criticality: High
What happened: The Decoder AI reported that google Deepmind adds background execution and MCP support to Gemini API managed agents Matthias Bastian 8, 2026 Google Deepmind is adding four new features to Managed Agents in the Gemini API. Developers can now run agents asynchronously in the background using Background Execution , with no open HTTP connection required. Remote MCP (Model Context Protocol) servers can also be connected directly to internal databases or APIs. Another addition lets developers use custom functions alongside the built-in sandbox tools.
Key takeaways:
Original source: https://the-decoder.com/google-deepmind-adds-background-execution-and-mcp-support-to-gemini-api-managed-agents/
Signal criticality: High
What happened: SecurityWeek reported that the cybersecurity firm responsibly disclosed its findings to GitHub and recommends that organizations treat all user-controlled content as untrusted, restrict agent permissions to the minimum required, restrict what agents can post publicly, and sanitize user input before it is passed to the AI agents. Artificial Intelligence Critical Vulnerability Exposes GitHub Agentic Workflows to Prompt Injection Researchers show how attackers can use a crafted public GitHub Issue to trick AI-powered workflows into exposing data from private repositories without authentication.
Key takeaways:
Original source: https://www.securityweek.com/critical-vulnerability-exposes-github-agentic-workflows-to-prompt-injection/
Signal criticality: High
What happened: Help Net Security reported that cyberProof Agentic MXDR Service brings AI agents to managed detection and response CyberProof has announced the launch of the CyberProof Agentic MXDR Service which connects AI agents with human expertise and presents quantifiable security outcomes with CyberProof s Reveal360. CyberProof modernizes managed detection and response by shifting security operations from manual workflows to a human-governed system of expert AI agents . The service streamlines the typically siloed functions of threat intelligence, threat hunting, detection engineering, security monitoring, and exposure management while positioning human experts to validate critical risk decisions and prevent business disruption.
Key takeaways:
Original source: https://www.helpnetsecurity.com/2026/07/07/cyberproof-agentic-mxdr-service/
Signal criticality: High
What happened: The Hacker News published "Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It". Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a proof-of-concept published Wednesday by the AI Now Institute, an attack it calls "Friendly Fire." It works against Anthropic's Claude Code and OpenAI's Codex when either is running in an autonomous mode that approves its own
Key takeaways:
Original source: https://thehackernews.com/2026/07/friendly-fire-ai-agents-built-to-catch.html
The strongest signal today is that AI security is being decided in the surrounding control layer — permissions, connectors, deterministic workflow design, response speed, and the infrastructure that still underpins trust. That is a more durable framing than generic agent hype, and it is the one worth carrying forward.