top | item 46627584

(no title)

theden | 1 month ago

Kinda funny that a lot of devs accepted that LLMs are basically doing RCE on their machines, but instead of halting from using `--dangerously-skip-permissions` or similar bad ideas, we're finding workarounds to convince ourselves it's not that bad

discuss

simonw|1 month ago

Because we've judged it to be worth it!

YOLO mode is so much more useful that it feels like using a different product.

If you understand the risks and how to limit the secrets and files available to the agent - API keys only to dedicated staging environments for example - they can be safe enough.

zahlman|1 month ago

Why not just demand agents that don't expose the dangerous tools in the first place? Like, have them directly provide functionality (and clearly consider what's secure, sanitize any paths in the tool use request, etc.) instead of punting to Bash?

pjm331|1 month ago

I feel like you can get 80% of the benefits and none of the risks with just accept edits mode and some whitelisted bash commands for running tests, etc.

catlifeonmars|1 month ago

Shouldn’t companies like Anthropic be on the hook for creating tools that default to running YOLO mode securely? Why is it up to 3rd parties to add safety to their products?

croes|1 month ago

> Because we've judged it to be worth it!

Famous last words

catlifeonmars|1 month ago

People really really want to juggle chainsaws, so have to keep coming up with thicker and thicker gloves.

solumunus|1 month ago

The alternative is dropping them and then doing less work, earning less money and having less fun. So yes, we will find a way.

staticassertion|1 month ago

Just like every package manager already does? This issue predates LLMs and people have never cared enough to pressure dev tooling into caring. LLMs have seemingly created a world where people are finally trying to solve the long existing "oh shit there's code execution everywhere in my dev environment where I have insane levels of access to prod etc" problem.