James Fan

Researching how to make LLM agents safe to deploy — focusing on security gaps in AI agents, such as LangGraph agents.

Previously cofounded two AI startups, led Google Cloud Speech Group, taught at Columbia University and was one of the main inventors of the IBM Watson question answering system that beat the best human contestants on Jeopardy!. Now mostly thinking about what happens when you give an AI agent access to real tools.

Background

AI Startup Cofounder (×2)

Google Cloud — Speech Group

Columbia University

IBM Research — Watson / Jeopardy!

Links

LinkedIn → Google Scholar → GitHub →

★ LangGraph Agent Security

14. Rate Limiting and Abuse Prevention: Protecting Against the Attacks That Cost You Money

Rate limiting for LangGraph agents requires five independent control levels beyond conventional gateway limiting — covering request rates, session execution bounds, loop detection, token budgets, and cost circuit breakers — because agents amplify a single user request into unbounded resource consumption in ways that web application rate limiting structurally cannot see.

★ AI Commentary

Has AI Already Written a Law without Anybody Noticing?

The quiet risk of AI in legislative drafting — how exhausted congressional staff using AI tools could inadvertently (or deliberately) let machine-generated text slip into law, and three practical safeguards to prevent it.

Recent writing

Jun 2026

14. Rate Limiting and Abuse Prevention: Protecting Against the Attacks That Cost You Money

security 13 min

Jun 2026

Has AI Already Written a Law without Anybody Noticing?

ai 4 min

Jun 2026

13. Human-in-the-Loop: The Defense That Judgment Can't Replace

security 12 min

Jun 2026

Multi Agent Setup for Office Workers

ai 8 min

Jun 2026

12. Observability and Monitoring: Detecting What Your Defenses Miss

security 12 min

Jun 2026

Multi Agent Setup for Developers

ai 9 min