blog: Goose became its own Watchdog #4300
Open
+99
−0
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
would be cool to link your scanner here! |
|
okay i know we agreed on the title but re reading this..I'm almost thinking a more straightforward title will give it more hits on SEO..or adding something straightforward 🤔 oh and something that puts us at the forefront as experts..How we're keep AI workflows secure or something..that's a little boring..but let me thik on it. |
angiejones
reviewed
Aug 23, 2025
|
|
||
| Remember when people shared recipes by passing handwritten cards between neighbors? You trusted Grandma's apple pie recipe because you knew Grandma. But what happens when strangers start sharing recipes online? You need someone to taste-test them first. | ||
|
|
||
| That's exactly the challenge we face with Goose recipes. We're building a community cookbook where you can try Goose recipes from other users with confidence that they're safe. (More on that to come!!) But we needed a way to make sure every recipe was safe to run. |
There was a problem hiding this comment.
Suggested change
| That's exactly the challenge we face with Goose recipes. We're building a community cookbook where you can try Goose recipes from other users with confidence that they're safe. (More on that to come!!) But we needed a way to make sure every recipe was safe to run. | |
| That's exactly the challenge we face with Goose recipes. We're building a community cookbook where you can try Goose recipes from other users with confidence that they're safe. But we needed a way to make sure every recipe was safe to run. |
angiejones
reviewed
Aug 23, 2025
|
|
||
| The beautiful irony wasn't lost on me. I'm essentially asking our AI to become its own watchdog. | ||
|
|
||
| I gave it a lot more direction: I wanted the scanner to run from GitHub Actions, and I wanted the scanning to be done within a Docker container so we didn't have to worry about accessing anything sensitive. |
There was a problem hiding this comment.
Suggested change
| I gave it a lot more direction: I wanted the scanner to run from GitHub Actions, and I wanted the scanning to be done within a Docker container so we didn't have to worry about accessing anything sensitive. | |
| I gave it a lot more direction: I wanted the scanner to run from GitHub Actions, and I wanted the scanning to be done within a Docker container so it could inspect the recipe in an isolated environment. |
angiejones
reviewed
Aug 23, 2025
|
|
||
| The process at a glance seems surprisingly simple but it's pretty complex -- picture the graceful goose swimming on the water but under the water the feet are thrashing around doing lots of work! | ||
|
|
||
| When someone submits a recipe via our GitHub issue template, it will start an automated scan. Goose spins up in an isolated Docker container, analyzes the recipe using its own security expertise plus some of our guidance, scores it for risk, and posts the results right back to the GitHub issue. If it gets approved, it moves onto the next stage. More on that another time! |
There was a problem hiding this comment.
Suggested change
| When someone submits a recipe via our GitHub issue template, it will start an automated scan. Goose spins up in an isolated Docker container, analyzes the recipe using its own security expertise plus some of our guidance, scores it for risk, and posts the results right back to the GitHub issue. If it gets approved, it moves onto the next stage. More on that another time! | |
| When someone submits a recipe via our GitHub issue template, it will start an automated scan. Goose spins up in an isolated Docker container, analyzes the recipe using its own security expertise plus some of our guidance, scores it for risk, and posts the results right back to the GitHub issue. |
angiejones
reviewed
Aug 23, 2025
|
|
||
| ## Goose in Headless Mode | ||
|
|
||
| We've covered headless mode in tutorials and videos, but here's a quick recap: headless mode allows Goose to run without a graphical user interface, making it faster and more efficient for automated tasks. It excels in server environments as long as we're being _really_ clear about the instructions to follow, or a fallback if the instructions cannot be followed -- we don't want something half-finished or broken as a result if Goose gets stuck on what to do. |
There was a problem hiding this comment.
for "tutorials and videos", it would be nice to hyperlink these
angiejones
reviewed
Aug 23, 2025
|
|
||
| Inside the container, we're installing Goose, and passing in a configuration file for which AI provider and model we want to use, plus a "base" recipe that tells Goose how to analyze the user's recipe. That recipe is also reinforcing a role of Goose being a security expert, but we had to add a little more. | ||
|
|
||
| Then we go into "headless" mode. We |
There was a problem hiding this comment.
Suggested change
| Then we go into "headless" mode. We | |
| Then we go into "headless" mode: |
angiejones
reviewed
Aug 23, 2025
|
|
||
| ### Looking Inside the Container | ||
|
|
||
| Inside the container, we're installing Goose, and passing in a configuration file for which AI provider and model we want to use, plus a "base" recipe that tells Goose how to analyze the user's recipe. That recipe is also reinforcing a role of Goose being a security expert, but we had to add a little more. |
There was a problem hiding this comment.
Suggested change
| Inside the container, we're installing Goose, and passing in a configuration file for which AI provider and model we want to use, plus a "base" recipe that tells Goose how to analyze the user's recipe. That recipe is also reinforcing a role of Goose being a security expert, but we had to add a little more. | |
| Inside the container, we're installing Goose, and passing in a configuration file for which AI provider and model we want to use, plus a "base" recipe that tells Goose how to analyze the user's recipe. That recipe is also reinforcing a role of Goose being a security expert. |
angiejones
reviewed
Aug 23, 2025
|
|
||
| ## The Learning Curve | ||
|
|
||
| Just telling Goose "you're a security expert" wasn't enough. It took some back-and-forth to teach the difference between a recipe that downloads a helpful development tool, and something that downloads something sketchy to your home directory to look for sensitive data. |
There was a problem hiding this comment.
this should go up earlier when you are talking about this topic.
angiejones
reviewed
Aug 23, 2025
|
|
||
| Sometimes the best way to solve a potential AI problem is with more AI. Goose understands Goose behavior patterns better than any human reviewer could. It knows the legitimate ways to automate tasks and can spot when something deviates from those patterns. Using Goose to build this scanner wasn't just a time-saver for making the tool, it's a productivity win for our team from manually review every recipe ourselves. | ||
|
|
||
| When our community recipes launches, anyone can submit a recipe knowing it'll get a fair, thorough review. And when you see a recipe get a security approval, remember: it was approved by Goose itself. |
There was a problem hiding this comment.
Suggested change
| When our community recipes launches, anyone can submit a recipe knowing it'll get a fair, thorough review. And when you see a recipe get a security approval, remember: it was approved by Goose itself. | |
| Anyone can submit a recipe knowing it'll get a fair, thorough review. And when you see a recipe get a security approval, remember: it was approved by Goose itself. |
angiejones
reviewed
Aug 23, 2025
| title: "When Goose Became Its Own Watchdog" | ||
| description: Building community trust by having AI analyze AI recipes for safety | ||
| authors: | ||
| - iand |
There was a problem hiding this comment.
Suggested change
| - iand | |
| - ian |
this is breaking the build
angiejones
reviewed
Aug 23, 2025
| <meta property="twitter:domain" content="block.github.io/goose" /> | ||
| <meta name="twitter:title" content="When Goose Became Its Own Watchdog" /> | ||
| <meta name="twitter:description" content="Goose headless mode runs a containerized scanner for community recipe submissions." /> | ||
| <meta name="twitter:image" content="https://block.github.io/goose/assets/images/goose-watchdog.png" /> |
angiejones
reviewed
Aug 23, 2025
| <meta property="og:type" content="article" /> | ||
| <meta property="og:url" content="https://block.github.io/goose/blog/when-goose-became-watchdog" /> | ||
| <meta property="og:description" content="Goose headless mode runs a containerized scanner for community recipe submissions." /> | ||
| <meta property="og:image" content="https://block.github.io/goose/assets/images/goose-watchdog.png" /> |
angiejones
requested changes
Aug 23, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
work in progress