AI agents like OpenClaw have recently exploded in popularity precisely because they can take the reins of your digital life. Whether you want a personalized morning news digest, a proxy that can fight with your cable company’s customer service, or a to-do list auditor that will do some tasks for you and prod you to resolve the rest, agentic assistants are built to access your digital accounts and carry out your commands. This is helpful—but has also caused a lot of chaos. The bots are out there mass-deleting emails they’ve been instructed to preserve, writing hit pieces over perceived snubs, and launching phishing attacks against their owners.

Watching the pandemonium unfold in recent weeks, longtime security engineer and researcher Niels Provos decided to try something new. Today he is launching an open source, secure AI assistant called IronCurtain designed to add a critical layer of control. Instead of the agent directly interacting with the user’s systems and accounts, it runs in an isolated virtual machine. And its ability to take any action is mediated by a policy—you could even think of it as a constitution—that the owner writes to govern the system. Crucially, IronCurtain is also designed to receive these overarching policies in plain English and then runs them through a multistep process that uses a large language model (LLM) to convert the natural language into an enforceable security policy.

“Services like OpenClaw are at peak hype right now, but my hope is that there’s an opportunity to say, ‘Well, this is probably not how we want to do it,’” Provos says. “Instead, let’s develop something that still gives you very high utility, but is not going to go into these completely uncharted, sometimes destructive, paths.”

IronCurtain’s ability to take intuitive, straightforward statements and turn them into enforceable, deterministic—or predictable—red lines is vital, Provos says, because LLMs are famously “stochastic” and probabilistic. In other words, they don’t necessarily always generate the same content or give the same information in response to the same prompt. This creates challenges for AI guardrails, because AI systems can evolve over time such that they revise how they interpret a control or constraint mechanism, which can result in rogue activity.

An IronCurtain policy, Provos says, could be as simple as: “The agent may read all my email. It may send email to people in my contacts without asking. For anyone else, ask me first. Never delete anything permanently.”

IronCurtain takes these instructions, turns them into an enforceable policy, and then mediates between the assistant agent in the virtual machine and what’s known as the model context protocol server that gives LLMs access to data and other digital services to carry out tasks. Being able to constrain an agent this way adds an important component of access control that web platforms like email providers don’t currently offer because they weren’t built for the scenario where both a human owner and AI agent bots are all using one account.

Provos notes that IronCurtain is designed to refine and improve each user’s “constitution” over time as the system encounters edge cases and asks for human input about how to proceed. The system, which is model-independent and can be used with any LLM, is also designed to maintain an audit log of all policy decisions over time.

IronCurtain is a research prototype, not a consumer product, and Provos hopes that people will contribute to the project to explore and help it evolve. Dino Dai Zovi, a well-known cybersecurity researcher who has been experimenting with early versions of IronCurtain, says that the conceptual approach the project takes aligns with his own intuition about how agentic AI needs to be constrained.

OpenAI has announced plans to turn its London office into its largest research hub outside of the United States.

The company—which established a UK office in 2023—says it will expand its London-based research team, scooping up talent emerging from leading British universities. It has not indicated how many researchers it will hire.

“The UK brings together world-class talent and leading scientific institutions and universities, making it an ideal place to deliver the important research which will ensure our AI is safe, useful, and benefits everyone,” said Mark Chen, chief research officer at OpenAI, in a statement.

The plans bring OpenAI into direct competition for top research talent with Google DeepMind, the AI lab run by British researcher Demis Hassabis, which is headquartered in London. DeepMind has long-running partnerships with Oxford University and the University of Cambridge, where it sponsors professorships, funds research, and works alongside researchers.

At the latest careers fair at Oxford University, the floor was packed with undergraduates looking for technical roles and recruiters hiring for AI-related positions. “The demand and supply is increasing on both sides, even within a year,” says Jonathan Black, director of the careers service at Oxford University. “To have something like this turn up is a really positive sign.”

OpenAI’s expansion in London could have a sort-of flywheel effect, whereby the researchers it hires early in their careers go on to start new labs in the UK, says Tom Wilson, partner at venture capital firm Seedcamp. “We’ve seen many examples over the years,” he says. “That’s where these kinds of announcements can have even more impact than the initial hires … the second-order effects can be great.”

OpenAI’s team in London will continue to contribute to products like Codex and GPT-5.2, the company says, but will now “own” certain aspects of model development relating to safety, reliability, and performance evaluation.

In a statement, the UK’s science and technology secretary, Liz Kendall, described the announcement as “a huge vote of confidence in the UK’s world-leading position at the cutting edge of AI research.”

The announcement coincides with a push in the UK to scale the nation’s data center and power infrastructure to meet the voracious demand for compute among AI companies, including OpenAI.

Honorable Mentions

During the winter, a whole WIRED crew tests ski clothes almost constantly. Here are a few other items that we like.

Hestra Fall Line 3-Finger Gloves for $190: I’ve long admired Hestra gloves from across the lift line, impressed by the Swedish company’s elegant stitchwork and thoughtful design touches. This was the year I finally got to try a pair for myself, and the Fall Line are exactly what they look like. There are six sizes available so you can get the perfect fit in this glove. The cowhide is buttery smooth and has already broken in a bit with five days’ use. The wrist strap means you never have to fret about dropping your glove from the lift when checking your phone, and they’re very warm without making me sweat. If you do sweat, the lining is removable so you can wash it without damaging the leather. —Martin Cizmar

Courtesy of Crab Grab

Crab Grab Snuggler Mitts for $89: These mini sleeping bags for your fingers are packed full of Primaloft insulation and benefitting from a sherpa fleece lining, they are toasty warm, and with a 15K membrane, impressively waterproof too. All-season mittens with durable construction for under $100? Yes Please!

Courtesy of Mons Royale

Mons Royale Yotei Merino Classic Long Sleeve for $98: As I type this, I’m nowhere near a mountain, but I’m still wearing the Mons Royale Yotei long sleeve top. It is ridiculously comfortable, made from 190-gsm-weight, 100 percent merino wool, and has a mercifully relaxed cut, so I remain warm, but don’t feel like a sausage. On the mountain however, the merino wool works its magic, wicking away sweat—especially on a hike up to some fresh powder—and keeping me comfortable. Paired with a shell and the Patagonia R1 Thermal Hoodie, I’m warm enough during a bitter arctic blast.

Seniq Powder Puff Down Jacket and Bib

Photograph: Kristin Canning

Seniq Powder Puff Down Jacket for $498 and Bib for $398: Seniq is another all-women’s outdoor brand that launched in 2024. It’s styled a little more Gen Z, leaning into fun color blocking over the monochromatic look. The Seniq Powder Puff Down Jacket has a dry-touch finish. It’s meant for drier days on the mountain, but a PFC-free DWR coating and YKK AquaGuard zippers do provide water resistance. The asymmetric front zipper helps you avoid chin rub when you have the jacket fully zipped. It also features cool asymmetrical quilting lines, side pockets-in-pockets that provide access to your bib (their bibs have a pocket on the front, so you can get in there without unzipping your jacket), an oversized removable hood, a forearm pass pocket, soft and stretchy wrist gaiters, and a large internal pocket that can absolutely handle a sandwich. This jacket was warm, pillowy, and comforting, like a super-soft hug.

The silky shell bibs are slightly barrel cut, which gives them a flattering shape without being fitted. The adjustable racer back-style straps and low back (with a stretchy waist) also provide a nice shape and breathability. There are two pockets on the front chest, pockets on either leg, two-way zip thigh vents, and a butt zipper for bathroom breaks. These fit easily over my boots, and the instep guards were a nice touch. With a durable three-layer membrane and a 20,000-mm waterproof rating, these will hold up against any and all weather the mountain throws at you. When I wore them on a wet snowy day, they beaded and sloughed off moisture well. —Kristin Canning

Mammut Sender In Hooded Jacket

Photograph: Kristin Canning

Mammut Sender In Hooded Jacket for $259: This puffy hoodie is a great mid-layer for under a shell jacket. The insulation is made from recycled rope scraps, and the outer is coated in wind-resistant PFC-free DWR coating. The hem falls at the hips, and the high collar and tight hood keep most of the face covered. I like wearing this piece under shells for snowboarding, but I know it’ll pull double duty as a comfy hiking and camping jacket, too, so it’s a solid multipurpose investment. It’s exceptionally lightweight and warm, though from a volume standpoint, it is on the bulkier side for a mid-layer and isn’t the most packable piece. —Kristin Canning

Helly Hansen Evolved Air Half Zip for $112: This fleece pullover has a waffle-like texture that traps heat and wicks moisture. With a high zippered collar and cinchable hem, you can adjust the fit to make it more air-tight or breathable. This mid-layer felt wonderfully lightweight while still keeping my toasty. It’s not bulky at all, only a little thicker than a base layer, laid comfortably under my jackets, and moved with me on the mountain. —Kristin Canning

Helly Hansen Lifa Base Layer Long-Sleeve Crew for $115 and Pants for $115: These base layers hit the weight sweet spot; they’re not too thick or thin, but just right. They’re slightly looser than other options on this list, so if you prefer something that isn’t so fitted, these are a great pick (but note that they run long too). These combine merino wool with Helly Hansen’s LIFA fibers, which add more moisture-wicking capabilities. They’re soft, lightweight, warm, and don’t hold onto smells. I love the cute designs and how well they regulate my temperature under insulated jackets and pants. The waist digs in a bit but doesn’t roll, and they stay in place and move well. —Kristin Canning

Power up with unlimited access to WIRED. Get best-in-class reporting and exclusive subscriber content that’s too important to ignore. Subscribe Today.