| ▲ | brookst 2 hours ago | |
Exactly. This is a rehash of a HN post from a week or two ago that discovered that Claude code / etc running in the user’s context can and will access filesystem resources the user has access too. That post had crazy suggestions for harness-level rules or shell scripts or something, when the obvious and correct answer is to run agents using existing OS-level security features that grant appropriate access (if you don’t want an agent accessing ~/ , run it as a user that doesn’t have access!) | ||
| ▲ | reactordev an hour ago | parent [-] | |
Lack of experience and understanding of the computer at the fundamental levels. | ||