Clawdbot/Moltbot looks to be a supply-chain attack waiting to happen, and I pity the poor soul who finds out when this ticking time bomb eventually detonates.

▲

fudged71 4 hours ago | parent | next [-]

It already happened with "What would Elon do" plugin

▲

rishabhaiover 8 hours ago | parent | prev | next [-]

i suspect awareness on supply-chain attacks is already low (though it seems to be increasing in recent times). the attack surface is everything an agent can get their hands on.

	▲	f311a 8 hours ago \| parent [-]
		Just look at the closed PRs of their project. General technical knowledge is so low it's insane. It attracts weird people.

▲

tamimio 3 hours ago | parent | prev [-]

That’s what first came to my mind, the multiple integrations and cascaded connections probably will introduce multiple attack vectors. But, what’s the hype with motlbot anyway? I can just open any AI app and ask whatever, especially moltbot already uses the same AI vendors.