Remix.run Logo
ashishb 2 hours ago

There is a reason I run all such CLIs inside a sandbox [1] giving limited directory access.

Imagine if the CLI pulled your SSH keys or other sensitive information by mistake?

Programmers do make such mistakes all the time. I don't want to count on whether "uploading all files it can access" is intentional or a mistake.

1 - https://github.com/ashishb/amazing-sandbox

exitb an hour ago | parent | next [-]

What’s described here isn’t connected to the agentic/AI nature of the software at all. Every single program you run as a regular user could potentially do this.

ashishb 41 minutes ago | parent [-]

And I run most of them inside sandbox now.

Why would you let a markdown linter access your ssh keys?

beepbooptheory 2 hours ago | parent | prev [-]

But in this particular case isn't the problem that it's sending everything in the sandbox? Rather than what it might do in an otherwise un-sandboxed system?