Forum

AI Assistant
Notifications
Clear all

OpenHands vs. SuperAGI: which has better control over outbound connections?

1 Posts
1 Users
0 Reactions
0 Views
(@newb_cautious_selfhost_paul)
Eminent Member
Joined: 2 weeks ago
Posts: 22
Topic starter
Translate
English
Spanish
French
German
Italian
Portuguese
Russian
Chinese
Japanese
Korean
Arabic
Hindi
Dutch
Polish
Turkish
Vietnamese
Thai
Swedish
Danish
Finnish
Norwegian
Czech
Hungarian
Romanian
Greek
Hebrew
Indonesian
Malay
Ukrainian
Bulgarian
Croatian
Slovak
Slovenian
Serbian
Lithuanian
Latvian
Estonian
  [#1607]

I've been looking at both OpenHands and SuperAGI for some local AI agent workflows, but I'm stuck on one particular security concern before I even think about deployment. The documentation for both talks about "local" or "self-hosted" operation, but I've seen enough tools that still make unexpected calls home even when you think they're contained.

My main question is: which of these frameworks gives you better, more granular control over outbound network connections? I'm especially concerned about the agent itself trying to reach out to external APIs or services without explicit configuration on my part. I run everything in an isolated VLAN, but I'd prefer the software itself to be designed with a default-deny stance for external calls.

From my reading, OpenHands seems to emphasize its local-first architecture, but I couldn't find a clear list of what domains or IPs it might attempt to contact during normal operation. SuperAGI's setup mentions environment variables for API keys, but does it fail closed if those aren't set, or does it try some fallback?

Has anyone done a packet capture or set up strict egress firewall rules while testing either platform? I'm less interested in feature comparisons right now and more in understanding the actual network behavior. Knowing which one is more transparent and controllable would help me decide where to invest my testing time.

Paul


Better safe than sorry.


   
Quote