| ▲ | ashishb 2 hours ago | |||||||
There is a reason I run all such CLIs inside a sandbox [1] giving limited directory access. Imagine if the CLI pulled your SSH keys or other sensitive information by mistake? Programmers do make such mistakes all the time. I don't want to count on whether "uploading all files it can access" is intentional or a mistake. | ||||||||
| ▲ | exitb an hour ago | parent | next [-] | |||||||
What’s described here isn’t connected to the agentic/AI nature of the software at all. Every single program you run as a regular user could potentially do this. | ||||||||
| ||||||||
| ▲ | beepbooptheory 2 hours ago | parent | prev [-] | |||||||
But in this particular case isn't the problem that it's sending everything in the sandbox? Rather than what it might do in an otherwise un-sandboxed system? | ||||||||