top | item 36608233

(no title)

radq | 2 years ago

The plugin is supposed to ask for confirmation, according to OpenAI's documentation at least.

> When a user asks a relevant question, the model may choose to invoke an API call from your plugin if it seems relevant; for POST requests, we require that developers build a user confirmation flow to avoid destruction actions.

https://platform.openai.com/docs/plugins/introduction

discuss

wunderwuzzi23|2 years ago

This was added recently, and is not enforced as far as I can tell.

See my blog post: https://embracethered.com/blog/posts/2023/chatgpt-plugin-vul...

p-e-w|2 years ago

That's terrifying. This simple requirement would be trivial to enforce automatically, and yet nobody gives a fuck.

It's unbelievable how fast-and-loose people are playing the topic of AI safety. If a strong AI is ever actually developed, there is no chance it will be successfully contained.

ilaksh|2 years ago

That's why he had to authenticate with GitHub before it could do anything on his behalf.

vikramkr|2 years ago

That doesn't satisfy the requirement for a confirmation on each post request though