top | item 47126549

(no title)

Very cool! There's a few personal projects like this I'd love to try a SOTA agentic AI like Claude for but I'm terrified to give it any access to my machine.

Stuff like the ISO just reinforces that terror. How did it find the iso? did it do google searches? What if instead of archive.org it found totallySketchWarez.com and installed a virus? what if it found a torrent and set that up and got you in trouble with an ISP?

it's tenacity is also a double edged sword what if it starts to try to modify the OS instead of random DLLs to make things right?

Always seems so risky to let these things loose while at the same time they lose a lot of utility if you have to hold their hand for every web call or decision.

discuss

joelres|6 days ago

So. True. This use case was fun, but was the first thing I've done that wasn't easily sandboxed.

One key is sandboxing the agent (easy to do with Claude Code) so that it can only see a certain directory and needs to ask permission for additional directory access (works well). Can double layer sandbox if you don't trust the Claude cli.

The ISO issue is whole other ballgame. In this case, for me, it was a bit of a yolo. I did click through the internet archive link and it seemed decent, but definitely risk here. Watching output doesn't really matter if there is a virus in the random executable that it pulled