I would argue that issuing commands to an LLM that has access to your digital life and filesystem through a SaaS messaging service is stupid to an unimaginable degree.
If it's properly sandboxed then I fail to see how it's useful, unless you're attaching it to your e-mail, calendar, etc. If you're attaching it to those things, then I still don't see how the SaaS messenger account you're using being hacked doesn't still directly imperil your personal information.
Like, I could run this thing on an isolated VLAN in a VM, but if I hook it up to a SaaS app for its frontend, then it's immediately insecure if the bot is connected to anything of value. If it's not connected to anything of value, then what's the point?
thethimble|1 month ago
The Discord/Slack frontend reduces friction significantly - particularly on mobile.
With proper sandboxing you get real benefits while limiting the blast radius significantly.
jesse_dot_id|1 month ago
Like, I could run this thing on an isolated VLAN in a VM, but if I hook it up to a SaaS app for its frontend, then it's immediately insecure if the bot is connected to anything of value. If it's not connected to anything of value, then what's the point?