| ▲ | rpodraza a day ago | |||||||
Maybe I'm paranoid, but allowing any coding agent or tool to execute commands within terminal that is not sandboxed somehow will be prone to attacks like that | ||||||||
| ▲ | internet101010 a day ago | parent | next [-] | |||||||
It's a double edged sword. With terminal sure, but not allowing interaction in Microsoft applications like Power BI (especially with no ability to copy and paste) renders Copilot completely useless. | ||||||||
| ||||||||
| ▲ | hultner a day ago | parent | prev [-] | |||||||
Isn’t the problem that it’s supposed to not execute commands without strict approval but the shell stdout redirection in combination with process substitution is bypassing this. | ||||||||