FlowLink: MCP proxy blocking destructive AI agent commands
FlowLink is a new MCP proxy designed to prevent AI agents from executing harmful commands on production servers. It intercepts over 100 destructive commands before they can be executed and allows for customizable rules for each agent and tool. The setup is quick and requires no code changes, making it accessible for various AI agents.
- ▪FlowLink acts as a proxy between AI agents and production tools to prevent destructive commands.
- ▪It intercepts commands like 'rm -rf' and 'DROP TABLE' before execution.
- ▪The system includes a Telegram approval queue for high-risk operations.
Opening excerpt (first ~120 words) tap to expand
We built FlowLink because AI agents (Claude Code, Cursor, Copilot) keep executing destructive commands on production servers with no guardrails.The recent "AI agent deleted production database" post (860 pts here) is exactly what this prevents.FlowLink is an MCP proxy between your AI agent and your tools. No code changes required. Point your agent config to FlowLink and it starts intercepting destructive commands.What it does:Shield Engine intercepts rm -rf, DROP TABLE, git push --force, chmod 777 and 100+ destructive patterns BEFORE execution.Policy Engine: per-agent, per-tool rules (e.g.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Ycombinator.