OpenAI pushes Agents SDK into secure runtime territory / OpenAI 把 Agents SDK 推向安全运行层
OpenAI updated the Agents SDK with native sandbox execution and a model-native harness, aiming to make long-running agents safer across files and tools. This is not just a developer-experience update. It signals a move toward selling an integrated runtime layer for enterprise agents, not only model access.
OpenAI 更新了 Agents SDK,引入原生沙盒执行和模型原生 harness,目标是让跨文件、跨工具的长期运行 Agent 更安全。这不只是开发体验升级,更像是在把“企业 Agent 运行层”做成标准件,而不只是卖模型 API。
链接: https://openai.com/index/the-next-evolution-of-the-agents-sdk
Turn your best AI prompts into one-click tools in Chrome / Chrome 把 AI prompt 变成一键工具
Google introduced Skills in Chrome, allowing users to discover, save, remix, and instantly rerun AI workflows. The important shift is behavioral: repeated AI usage is moving away from raw chat input and toward reusable workflow artifacts embedded in the tools people already use.
Google 在 Chrome 中推出 Skills,允许用户发现、保存、重混并一键复用 AI 工作流。更重要的变化是使用习惯的迁移,高频 AI 使用正在从“每次手动输入”转向“把流程封装成可复用工具”,而且直接嵌进用户已经在用的浏览器里。
链接: https://blog.google/products-and-platforms/products/chrome/skills-in-chrome/
New ways to balance cost and reliability in the Gemini API / Gemini API 持续把成本与可靠性做成双层服务
Google’s Flex and Priority inference tiers continue a broader trend: AI platforms are no longer offering a single generic service. They are segmenting workloads by latency, reliability, and cost profile, which will shape how SaaS teams design product tiers and internal routing policies.
Google 推出的 Flex 和 Priority 推理层级,继续强化一个更大的趋势,AI 平台不再只卖“统一服务”,而是在按延迟、可靠性和成本结构对 workload 做分层。这会直接影响 SaaS 团队未来的产品分层和请求路由策略。
链接: https://blog.google/innovation-and-ai/technology/developers-tools/introducing-flex-and-priority-inference/
Hack the AI agent: Build agentic AI security skills / GitHub 正把 Agent 安全训练做成基础设施
GitHub’s Secure Code Game for agentic AI shows that security is becoming part of mainstream developer training, not a niche concern. As more teams ship agents into real workflows, exploit simulation, red-teaming, and defensive patterns will become table stakes.
GitHub 的 agentic AI 安全挑战说明,Agent 安全正在进入主流开发者训练,而不再只是小圈子议题。随着越来越多团队把 Agent 接入真实业务流,漏洞演练、红队测试和防御模式会逐步变成默认要求。
链接: https://github.blog/security/hack-the-ai-agent-build-agentic-ai-security-skills-with-the-github-secure-code-game/
我的判断
今天的四个信号指向同一个方向,AI 平台竞争正在从模型能力竞争,转向入口、运行层和工作流封装能力的竞争。谁能让 Agent 更安全地跑起来、更方便地复用、更容易嵌入现有工具,谁就更可能拿到企业预算。
对 opcpay.org 读者的意义
对 SaaS 创业者和增长负责人来说,下一阶段不该只问“用哪个模型更强”,而要开始问三件事:
1. 我的 AI 请求是否需要按成本和 SLA 分层。
2. 我的高频流程能否被封装成可复用 workflow。
3. 我的 Agent 是否具备基本的安全执行边界和可观测性。