| ▲ | GarrickDrgn 2 days ago |
| Am I misunderstanding something? How is this "Everything runs locally" if it's talking to OpenAI's APIs? |
|
| ▲ | whilenot-dev 2 days ago | parent | next [-] |
| This app is using OpenAI via the ai package[0][1], so "Everything runs locally" is definitely misleading. [0]: https://github.com/NickTikhonov/snap-ql/blob/409e937fa330deb... [1]: https://github.com/vercel/ai |
|
| ▲ | piskov 2 days ago | parent | prev | next [-] |
| I guess he means there is no proxy between you and openai. API key won’t leak, etc. |
|
| ▲ | nicktikhonov 2 days ago | parent | prev | next [-] |
| What I meant was that it isn't a web app and I don't store your connection strings or query results. I'll make this more clear |
| |
| ▲ | kokanee 2 days ago | parent | next [-] | | It is a web app, though. You just aren't running the server, OpenAI is. And you're packaging the front end in electron instead of chrome to make it feel as if it all runs locally, even though it doesn't. Side note: I don't see a license anywhere, so technically it isn't open source. | |
| ▲ | omega3 2 days ago | parent | prev [-] | | You might not but openai does. | | |
| ▲ | doctorpangloss 2 days ago | parent | next [-] | | API gateways could accept public keys instead of generating bearer tokens. Then the private key could reside in an HSM, and apps like this could give HSMs requests to sign. IMO even though this could be done in an afternoon, everyone - Apple and Google, the CDN / WAF provider, the service provider - is too addicted to the telemetry. | |
| ▲ | nicktikhonov 2 days ago | parent | prev [-] | | That makes no sense. OpenAI doesn't know the secret database connection string or any query results. Perhaps you should have read the code before making baseless claims. | | |
| ▲ | nessbot 2 days ago | parent [-] | | But it knows what you're querying, which depending on what you're doing may also give away a good bit about whats in the DB. |
|
|
|
|
| ▲ | 2 days ago | parent | prev [-] |
| [deleted] |