Autonomous AI Security Research

Assurance Infrastructure

Making autonomous AI agents trustworthy enough to rely on.

Auron Lab is a security research labs building the assurance and evaluation infrastructure for AI agents. Our work supports safer adoption of AI in software workflows where security is critical.

Join waitlist

See what we are building

tempo

reth-execution-engine

Link GitHub Repo

Active

File browser

crates

evm

src

lib.rs

execute.rs

processor.rs

payload

src

lib.rs

builder.rs

transaction-pool

src

lib.rs

pool.rs

validator.rs

precompiles

src

lib.rs

primitives

src

lib.rs

consensus

src

lib.rs

commonware-node

src

lib.rs

execute.rs

processor.rs

builder.rs

use crate::TempoEvmConfig;

use alloy_consensus::crypto::RecoveryError;

use alloy_primitives::Address;

use rayon::prelude::*;

ConfigureEngineEvm, ConfigureEvm, EvmEnvFor, ExecutableTxIterator, ExecutionCtxFor,

FromRecoveredTx, RecoveredTx, ToTxEnv, block::ExecutableTxParts,

};

use reth_primitives_traits:: {SealedBlock, SignedTransaction};

use std::sync::Arc;

use tempo_payload_types::TempoExecutionData;

use tempo_primitives::{Block, TempoTxEnvelope};

use tempo_revm::TempoTxEnv;

impl ConfigureEngineEvm > TempoExecutionData > for TempoEvmConfig {

fn evm_env_for_payload(

&self,

payload: &TempoExecutionData;

) -> Result<EvmEnvFor<Self>, Self::Error> {

self.evm_env(&payload.block)

}

fn context_for_payload<'a>(

&self,

payload: &'a TempoExecutionData,

) -> Result<ExecutionCtxFor<'a, Self>, Self::Error> {

let TempoExecutionData { block, validator_set } = payload;

let mut context = self.context_for_block(block)?;

context.validator_set = validator_set.clone();

Ok(context)

}

fn tx_iterator_for_payload(

&self,

payload: &TempoExecutionData,

) -> Result<impl ExecutableTxIterator<Self>, Self::Error> {

let block = payload.block.clone();

All threads

Tempo/reth-execution-engine

Open

Nathaniel

Auron triage Team

19:20

A thread for project-level discussions and important notifications.

Auron

19:20

@Protocol team New finding available:

H-01: Pre-T2 Fee Swap DoS: Fee AMM liquidity can be drained mid-tx to force collect_fee_post_tx() to error as EVMError::Custom

Horsefacts

Protocol team

19:20

Thank you! Great findings so far, will review this now.
I think this one is quite significant too.

Auron

19:20

@Protocol team New finding available:

H-02: StablecoinDEX pre-T1A swallowed OutOfGas during flip placement commits partial state

Georgios

Protocol team

19:20

These are some nice finds.

Your message here...

WHAT WE DO

We making AI security agents, measurable, comparable and safe to use.

Autonomous agents are moving from code completion into code analysis, vulnerability discovery, remediation and security reasoning. Before organisations rely on them, they need to know whether AI agents are reliable in software workflows where security is non-negotiable. Today, that is still difficult to test consistently.

Tested on real world data

AI security agents are evaluated against real world vulnerabilities and working exploits in safe and controlled sandboxes.

Reproducible and comparable

The same tasks, environments and scoring across agents, so results can be reproduced, trusted and compared.

Shared assurance infrastructure

Curated datasets, reproducible testbeds, evaluation harnesses and scoring methods for AI security agents.

ASSURANCE INFRASTRUCTURE IN DEVELOPMENT

The Assurance Asset/ Approach.

The asset is designed as a data-and-evaluation pipeline. It starts with vulnerability inputs from public advisory sources, then verifies, de-duplicates and documents them before any record becomes part of an evaluation task. Accepted records are linked to source, provenance, affected versions, fixes, validation status, environment manifests and known limitations.

Curated data records

Reproducible environments

Agent-facing harness

Security-aware scoring

Governed access

WHO BENEFITS

Built for the UK AI security ecosystem.

AI Startups

Audit Firms & Internal Security Teams

Assurance Providers

AI Startups

Auron Labs is focused on the infrastructure layer between agent capability and real-world trust. The intended users are not only model builders. They include the AI startup teams, who need repeatable evidence before AI systems are used in critical workflows.

Audit Firms & Internal Security Teams

For audit firms, internal security teams, security researchers, cybersecurity and AppSec vendors, and DevSecOps teams who need repeatable evidence before AI systems are used in critical workflows.

Teams Preparing for Launch or Upgrade

For researchers under time pressure who need to scale coverage without scaling headcount at the same rate. Auron amplifies what your team can find — surfacing issues that manual review can miss, backed by the level of proof your clients expect.

AI Startups

Audit Firms & Internal Security Teams

Assurance Providers

DeFi Protocol Teams

CTOs, engineering leads, and security teams at protocols that need continuous coverage embedded in development — not scheduled reviews that leave weeks of new code exposed. Auron integrates into pull requests and releases so findings surface before deployment, not after.

Audit Firms & Internal Security Teams

Teams Preparing for Launch or Upgrade

Register interest in
Assurance infrastructure.

Auron Labs is accepting a limited number of teams before the public launch. Join the waitlist and be first to know when early access opens.

Making autonomous AI agents trustworthy enough to rely on.

We making AI security agents, measurable, comparable and safe to use.

The Assurance Asset/ Approach.

Built for the UK AI security ecosystem.

Register interest in Assurance infrastructure.

Register interest in
Assurance infrastructure.