Remix.run Logo
omega3 2 days ago

You might not but openai does.

doctorpangloss 2 days ago | parent | next [-]

API gateways could accept public keys instead of generating bearer tokens. Then the private key could reside in an HSM, and apps like this could give HSMs requests to sign. IMO even though this could be done in an afternoon, everyone - Apple and Google, the CDN / WAF provider, the service provider - is too addicted to the telemetry.

nicktikhonov 2 days ago | parent | prev [-]

That makes no sense. OpenAI doesn't know the secret database connection string or any query results. Perhaps you should have read the code before making baseless claims.

nessbot 2 days ago | parent [-]

But it knows what you're querying, which depending on what you're doing may also give away a good bit about whats in the DB.