James Fan

Researching how to make LLM agents safe to deploy — focusing on security gaps in AI agents, such as LangGraph agents.

Previously cofounded two AI startups, led Google Cloud Speech Group, taught at Columbia University and was one of the main inventors of the IBM Watson question answering system that beat the best human contestants on Jeopardy!. Now mostly thinking about what happens when you give an AI agent access to real tools.

Background

AI Startup Cofounder (×2)

Google Cloud — Speech Group

Columbia University

IBM Research — Watson / Jeopardy!

Links

LinkedIn → Google Scholar → GitHub →

★ AI Commentary

Has AI Already Written a Law without Anybody Noticing?

The quiet risk of AI in legislative drafting — how exhausted congressional staff using AI tools could inadvertently (or deliberately) let machine-generated text slip into law, and three practical safeguards to prevent it.

★ LangGraph Agent Security

13. Human-in-the-Loop: The Defense That Judgment Can't Replace

Human-in-the-loop as a first-class security control for LangGraph agents — why human judgment defends against novel, irreversible, and high-blast-radius actions that automation structurally cannot, covering interrupt placement, the LangGraph interrupt() pattern, sanitized review packages, approval validation against spoofing, securing the review interface, and fail-safe degradation.

Recent writing

Jun 2026

Has AI Already Written a Law without Anybody Noticing?

ai 4 min

Jun 2026

13. Human-in-the-Loop: The Defense That Judgment Can't Replace

security 12 min

Jun 2026

Multi Agent Setup for Office Workers

ai 8 min

Jun 2026

12. Observability and Monitoring: Detecting What Your Defenses Miss

security 12 min

Jun 2026

Multi Agent Setup for Developers

ai 9 min

Jun 2026

11. Authentication and Authorization: Who's Allowed to Do What to Your Agent

security 12 min