| ▲ | jeremyccrane 3 hours ago | |
This should be the solution. All destructive actions require human intervention. | ||
| ▲ | Someone1234 2 hours ago | parent | next [-] | |
If we take that literally, then just remove all destructive API endpoints. Because then, it they no real purpose, you cannot automate the removal of anything. I think some other suggestions are saner (cool-down period, more fine-grain permissions, delete protection for certain high-value volumes). I don't think "don't allow destructive actions over the API" is the right boundary. | ||
| ▲ | gizmondo an hour ago | parent | prev [-] | |
A human representing the company should be physically present in the provider's office to perform such an action or what? Otherwise you would just grant your agent a way to impersonate a human. | ||