<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"><channel><title>Clement Li&apos;s Blog</title><description>A personal blog about technology, programming, and life.</description><link>https://ugorange.com/</link><item><title>Protecting Prompts Like Program Control Flow: A Deep Dive into the PCFI Paper</title><link>https://ugorange.com/en/blog/pcfi-prompt-injection/</link><guid isPermaLink="true">https://ugorange.com/en/blog/pcfi-prompt-injection/</guid><description>A paper that brings the concept of Control-Flow Integrity (CFI) from software security to prompt defense. Core insight: Prompt Injection is fundamentally a structural problem — low-priority inputs hijacking the execution flow of high-priority instructions.</description><pubDate>Mon, 30 Mar 2026 00:00:00 GMT</pubDate></item><item><title>Not Bound to Any Agent Framework: How We Built a Security Agent Platform with Dual-Contract Design</title><link>https://ugorange.com/en/blog/runtime-agnostic-agent/</link><guid isPermaLink="true">https://ugorange.com/en/blog/runtime-agnostic-agent/</guid><description>While everyone debates whether to choose LangChain or Claude Code, we took a different path — defining two universal contracts that allow any Coding Agent to serve as the platform&apos;s execution engine.</description><pubDate>Mon, 30 Mar 2026 00:00:00 GMT</pubDate></item><item><title>像保护程序控制流一样保护 Prompt：PCFI 论文解读</title><link>https://ugorange.com/blog/pcfi-prompt-injection/</link><guid isPermaLink="true">https://ugorange.com/blog/pcfi-prompt-injection/</guid><description>一篇把软件安全中的控制流完整性（CFI）思想搬到 Prompt 防护的论文。核心洞察：Prompt Injection 本质上是一个结构性问题——低优先级输入篡改了高优先级指令的执行流。</description><pubDate>Mon, 30 Mar 2026 00:00:00 GMT</pubDate></item><item><title>不绑定任何 Agent 框架：我们如何用双契约设计构建安全智能体平台</title><link>https://ugorange.com/blog/runtime-agnostic-agent/</link><guid isPermaLink="true">https://ugorange.com/blog/runtime-agnostic-agent/</guid><description>当所有人都在争论该选 LangChain 还是 Claude Code 时，我们选择了一条不同的路——定义两个通用契约，让任何 Coding Agent 都能成为平台的执行引擎。</description><pubDate>Mon, 30 Mar 2026 00:00:00 GMT</pubDate></item><item><title>Agent Observability Overview 4: From Data to Judgment</title><link>https://ugorange.com/en/blog/agent-observability-4/</link><guid isPermaLink="true">https://ugorange.com/en/blog/agent-observability-4/</guid><description>This is the final article in the Agent Observability series, exploring how to go from data to judgment - cost attribution, behavioral baselines, anomaly detection, and making observability truly operational.</description><pubDate>Wed, 31 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent 可观测概述4：从数据到判断</title><link>https://ugorange.com/blog/agent-observability-4/</link><guid isPermaLink="true">https://ugorange.com/blog/agent-observability-4/</guid><description>这是 Agent 可观测性系列的最后一篇文章，探讨如何从数据走向判断：成本归因、行为基线、异常检测，以及让可观测性真正可运营。</description><pubDate>Wed, 31 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent Observability Overview 3: Practical Choices for Collection and Reconstruction</title><link>https://ugorange.com/en/blog/agent-observability-3/</link><guid isPermaLink="true">https://ugorange.com/en/blog/agent-observability-3/</guid><description>This is the third article in the Agent Observability series, exploring three paradigms of data collection, the misalignment between audit and runtime, and the design principle that reconstructability is better than full collection.</description><pubDate>Wed, 24 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent 可观测概述3：采集与还原的现实选择</title><link>https://ugorange.com/blog/agent-observability-3/</link><guid isPermaLink="true">https://ugorange.com/blog/agent-observability-3/</guid><description>这是 Agent 可观测性系列的第三篇文章，探讨数据采集的三种范式、审计与运行时的错位问题，以及可还原性优于全量采集的设计原则。</description><pubDate>Wed, 24 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent Observability Overview 2: How I Understand Agent Key Objects</title><link>https://ugorange.com/en/blog/agent-observability-2/</link><guid isPermaLink="true">https://ugorange.com/en/blog/agent-observability-2/</guid><description>This is the second article in the Agent Observability series, exploring four core objects in the Agent world - Agent, Model Source, Tool, and Agent-to-Agent Link.</description><pubDate>Wed, 17 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent 可观测概述2：我如何理解 Agent 的关键对象</title><link>https://ugorange.com/blog/agent-observability-2/</link><guid isPermaLink="true">https://ugorange.com/blog/agent-observability-2/</guid><description>这是 Agent 可观测性系列的第二篇文章，探讨 Agent 世界中的四类核心对象：Agent、Model Source、Tool、Agent-to-Agent Link。</description><pubDate>Wed, 17 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent Observability Overview 1: Why Agents Make &quot;Visibility&quot; Harder</title><link>https://ugorange.com/en/blog/agent-observability-1/</link><guid isPermaLink="true">https://ugorange.com/en/blog/agent-observability-1/</guid><description>This is the first article in the Agent Observability series, exploring the core challenges of observability in the Agent era - uncertainty, semantic gaps, and data silos.</description><pubDate>Wed, 10 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Agent 可观测概述1: 为什么 Agent 会让&quot;看得见&quot;变难</title><link>https://ugorange.com/blog/agent-observability-1/</link><guid isPermaLink="true">https://ugorange.com/blog/agent-observability-1/</guid><description>这是 Agent 可观测性系列的第一篇文章，探讨 Agent 时代可观测性面临的核心挑战：不确定性、语义鸿沟和数据孤岛。</description><pubDate>Wed, 10 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Runc Container Escape Vulnerabilities (CVE-2025-31133 et al.) In-Depth Analysis</title><link>https://ugorange.com/en/blog/runc-cve-2025-31133/</link><guid isPermaLink="true">https://ugorange.com/en/blog/runc-cve-2025-31133/</guid><description>An in-depth analysis of three critical runc vulnerabilities disclosed in November 2025, exploring their attack mechanisms, exploitation methods, and remediation recommendations.</description><pubDate>Wed, 03 Dec 2025 00:00:00 GMT</pubDate></item><item><title>Runc 容器逃逸漏洞 (CVE-2025-31133 等) 详细分析</title><link>https://ugorange.com/blog/runc-cve-2025-31133/</link><guid isPermaLink="true">https://ugorange.com/blog/runc-cve-2025-31133/</guid><description>深入分析 2025 年 11 月披露的三个 runc 高危漏洞，探讨其攻击原理、利用方式及修复建议。</description><pubDate>Wed, 03 Dec 2025 00:00:00 GMT</pubDate></item></channel></rss>