Posts on Jose Hernandez

NVIDIA OpenShell: Run Your AI Agents in a Sandbox

Fri, 10 Apr 2026 00:00:00 +0000

OpenShell is currently alpha software. APIs and behavior may change without notice. Learn more about OpenShell by visiting the Github Repo

AI agents read your files, execute shell commands, install packages, and make network requests autonomously, at machine speed. Most people are running agents directly on their workstations or servers, with the same access as a privileged user and almost no audit trail.

NVIDIA’s OpenShell is a runtime layer that sits between your agent and your infrastructure, and I think it is a step in the right direction since it addresses how agents should be run as a matter of course.

Deploying AI Coding Agents: Ensuring a Safe Operating Environment for AI-Driven Development

Fri, 03 Apr 2026 00:00:00 -0600

This post is intended as a starting point for security and architecture discussions when deploying agentic applications. Specific implementation details will vary based on existing infrastructure, compliance requirements, and risk tolerance. Engage your security team and, where regulated data is involved, legal counsel before deploying AI coding agents in production environments.

Summary
Introduction
The Problem Space
Key Risk Categories
Human in the Loop
Isolation Strategies
Comparative Analysis
Recommendations
Conclusion
Glossary

1. Summary

AI coding agents such as OpenAI’s Codex and Anthropic’s Claude Code represent a new category of software tool: autonomous systems capable of reading, writing, and executing code on behalf of a developer. While the productivity gains are real and measurable, deploying these agents at scale introduces a class of risks that traditional teams and individuals are not equipped to evaluate.

I Built a Blog. Here's Why That's the Hard Part.

Thu, 02 Apr 2026 00:00:00 -0600

NOTE: This article was generated by AI and proofread by a human.

Every engineer has notes, drafts in Notion, and threads that never got posted that could have been blog posts.

I had all of that. What I didn’t have was a place to put it.

So I built one.

The Decision to Build, Not Use

Ghost, Substack, Medium — they all work. Millions of people publish on them every week. But I wanted a few things:

The Three Service Models in the Cloud

Fri, 07 Jul 2023 20:44:10 -0500

The cloud is an abstract concept that has been around for a while. It can be generally defined as a platform where you can upload anything, and not have to worry about maintaining the machines behind it.

At a large scale, the cloud can be broken into three models, which we will refer to as subsets.

There are three core subsets of the cloud. Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). There exists many more models than these three, but those are arbitrially created based on what that product’s goal is (such as Database as a Service [DBaaS] and Functions as a Service [FaaS]).