Hazmat: OS-level containment for AI coding agents on macOS
Summary
Hazmat provides OS-level containment for AI coding agents on macOS, including a three-layer enforcement model (user isolation, kernel sandbox, pf firewall), plus DNS blocklists and supply-chain hardening. It outlines threat models, CVEs, and multi-layer defenses for autonomous AI agents in development environments.